diff options
| author | Roger Dingledine <arma@torproject.org> | 2017-02-13 15:22:36 -0500 |
|---|---|---|
| committer | Roger Dingledine <arma@torproject.org> | 2017-02-13 15:22:36 -0500 |
| commit | 635c5a8a92c8066412645b291817eadcc82d8f8f (patch) | |
| tree | ae6f26a0bbed18291e30e3df770e60bae09c4782 | |
| parent | f6016058b42aa1c4528fd8c7c2da3d13eddd63dc (diff) | |
| download | tor-635c5a8a92c8066412645b291817eadcc82d8f8f.tar.gz tor-635c5a8a92c8066412645b291817eadcc82d8f8f.zip | |
be sure to remember the changes file for #20384
| -rw-r--r-- | changes/bug20384 | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/changes/bug20384 b/changes/bug20384 new file mode 100644 index 0000000000..591015ad94 --- /dev/null +++ b/changes/bug20384 @@ -0,0 +1,10 @@ + o Major features (security fixes): + - Prevent a class of security bugs caused by treating the contents + of a buffer chunk as if they were a NUL-terminated string. At + least one such bug seems to be present in all currently used + versions of Tor, and would allow an attacker to remotely crash + most Tor instances, especially those compiled with extra compiler + hardening. With this defense in place, such bugs can't crash Tor, + though we should still fix them as they occur. Closes ticket + 20384 (TROVE-2016-10-001). + |