Chrome OS exploit: one byte overflow and symlinks
https://googleprojectzero.blogspot.ch/2016/12/chrome-os-exploit-one-byte-overflow-and.html [googleprojectzero.blogspot.ch]
2016-12-14 21:03
No wonder there was a vulnerability, just look at that brace style!
Two vulns. Overflow in DNS library for initial exploit, then design flaw regarding symlinks to allow persistence in Chrome OS, which should otherwise not be possible.