How Mayhem Helped Uncover a Security Vulnerability in RustOS (CVE-2022-36086)
ForAllSecure
DECEMBER 1, 2022
The target of interest for this example comes from Philipp Opperman's amazing " BlogOS ". This library is designed for use in embedded and bootloader contexts, where we don't have the standard library's Vec or Box for dynamic memory. We can't just call Heap::deallocate , for example, with a randomly generated pointer!
Let's personalize your content