Table of Contents
Consolidation & Overlapping Chunks
These techniques focus on manipulating chunk boundaries and triggering consolidation (merging) to create βghostβ chunks that encompass other active allocations.
| Technique | Description |
|---|---|
| Overlapping Chunks | Simple size overwrite to expand a chunk. |
| Non-adjacent Consolidation | Consolidating across an allocated chunk. |
| Poison Null Byte | Shrinking a chunk via off-by-one null byte. |
| House of Einherjar | Triggering massive backward consolidation. |
| Mmap Overlap | Achieving overlap in the mmap region. |
Attacks centered on consolidation and overlap.