exploiting overflowed kmalloc() memory?

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: exploiting overflowed kmalloc() memory?
From: infamous41md@xxxxxxxxxx
Date: Fri, 18 Jun 2004 13:53:47 -0400
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

has anyone done any research on exploiting overflows with memory returned by 
kmalloc()?  after briefly looking at source, i see that internally it relies on 
the kmem_cache_alloc() functions.  i didn't see any sort of coalescing as with 
dlmalloc, so maybe it's not even possible?  anyone have any links/info about 
this?

Follow-Ups:
- Re: exploiting overflowed kmalloc() memory?
  - From: infamous42md

Prev by Date: Re: Is predictable spam filtering a vulnerability?
Next by Date: Re: Multiple Antivirus Scanners DoS attack.
Previous by thread: [ GLSA 200406-14 ] aspell: Buffer overflow in word-list-compress
Next by thread: Re: exploiting overflowed kmalloc() memory?
Index(es):
- Date
- Thread