[Dailydave] Dangling pointers exploitation

[jf]

> Let me just qualify that I was talking about the whole class of
> wild-pointer bugs.

how would it be any different than
ptr+overflowed_offset/array[negative_index]/et cetera bugs?

perhaps the guys found a new way of reliably exploiting a very specific
form of dangling pointer bugs, but i dont see how it could possibly
qualify as being a new class of vulns, nor can i think of anyone who has
ever said a dangling pointer was a QA issue and not a security issue