In late 2001, “Vudo Malloc Tricks” and “Once Upon A free()” defined the exploitation of overflowed dynamic memory chunks on Linux. In late 2004, a series of patches to GNU libc malloc implemented over a dozen mandatory integrity assertions, effectively rendering the existing techniques obsolete. The Malloc Maleficarum discusses the next generation of possible glibc malloc exploitation techniques.
You can download it from the following link: https://packetstormsecurity.com/files/download/40638/MallocMaleficarum.txt
Source: https://packetstormsecurity.com/files/40638/MallocMaleficarum.txt.html