TL;DR: a 1 byte overflow allows you to induce a small bias in the nonce used in the DSA signing algorithm. Use LLL to exploit this bias to find the private key.

Original writeup (https://fortenf.org/e/ctfs/pwn/crypto/2018/05/07/defconquals2018-official.html).