tl;dr

• Race condition to change the type.
• Leak using uninitialized memory and get rip with overflow.

tl;dr

• Heap Overflow in glob function while handling Tilde operator.
• Abuse null byte overflow to gain RCE.

tl;dr

• Use the integer overflow to trigger a kernel heap overflow.
• Use the heap overflow to overwrite tty structure function pointers to get code execution.

tl;dr

• Jemalloc heap challenge
• A buggy implementation of strncat in merge allows for an overwrite onto the next region

tl;dr

• Arbitrary type confusion in DFG JIT
• Bug eliminates a single CheckStructure node

tl;dr

• UAF in chess game, overwrite __malloc_hook to one_gadget

tl;dr

• Abusing a stack overflow on a RISC-V binary to then return to shellcode.

tl;dr

• Buffer overflow in AArch64
• Bypass pointer authentication to leak libc and get shell

tl;dr

• Overflow from stdin stucture till main_arena.
• Create fake fastbin chunks to get overlapping chunk and leak.
• Overwrite __malloc_hook using fastbin attack.

tl;dr

• overflow the char candle counter stored in the wax structure and trigger uaf.
• Use the uaf to trigger double free and get shell.