This vulnerability has been discovered by Qualys Threat Research. Here you can read the advisory they published, it explains in depth the vulnerability.

The exploit has been tested on Ubuntu 22.04.2 LTS with GLIBC 2.35-0ubuntu3.1.

The makefile allows testing the exploit in the following scenarios:

1. With ASLR disabled (test).
2. With ASLR enabled (exploit)
3. Debugging the exploit (debug)

Kudos to leesh3288 for his exploit.