malloc and buffer overflow attacks

[forkit]

On Monday, 3 January 2022 at 12:58:33 UTC, Paolo Invernizzi wrote:
>
> In the vulnerability described in the article, the 'len' 
> parameter is the result of a sum overflowing in a previous for 
> loop, so the problem actually is _outside_ of the allocator.
>

That is not entirely correct, and could mislead one into 
implementing a less than optimal solution to the problem.

The overflow and the allocater 'together', provide the attack 
surface.