fixup! Don't atoi off the end of a buffer chunk.

Credit AFL in the changes file.
author: Nick Mathewson <nickm@torproject.org> 2017-02-14 16:44:58 -0500
committer: Nick Mathewson <nickm@torproject.org> 2017-02-14 16:44:58 -0500
commit: ff088ea7d7eb854846a5611361f4744f9bb0ee9e (patch)
tree: e27d9d0c8d037325a0c15b09142560decdc558ae
parent: c4f2faf3019f2c41f9c3b2b8a73b4fe41e881328 (diff)
download: tor-ff088ea7d7eb854846a5611361f4744f9bb0ee9e.tar.gz
tor-ff088ea7d7eb854846a5611361f4744f9bb0ee9e.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/changes/bug20894 b/changes/bug20894
index 6443396308..2dbf9b9aa9 100644
--- a/changes/bug20894
+++ b/changes/bug20894
@@ -3,6 +3,7 @@
       do not read off the end of the buffer. This bug was a potential
       remote denial-of-service attack against Tor clients and relays.
       A workaround was released in October 2016, which prevents this
-      bug from crashing Tor.  This is a fix for the underlying issue,
+      bug from crashing Tor. This is a fix for the underlying issue,
       which should no longer matter (if you applied the earlier patch).
-      Fixes bug 20894; bugfix on 0.2.0.16-alpha.
+      Fixes bug 20894; bugfix on 0.2.0.16-alpha. Bug found by fuzzing
+      using AFL (http://lcamtuf.coredump.cx/afl/).
author	Nick Mathewson <nickm@torproject.org>	2017-02-14 16:44:58 -0500
committer	Nick Mathewson <nickm@torproject.org>	2017-02-14 16:44:58 -0500
commit	ff088ea7d7eb854846a5611361f4744f9bb0ee9e (patch)
tree	e27d9d0c8d037325a0c15b09142560decdc558ae
parent	c4f2faf3019f2c41f9c3b2b8a73b4fe41e881328 (diff)
download	tor-ff088ea7d7eb854846a5611361f4744f9bb0ee9e.tar.gz tor-ff088ea7d7eb854846a5611361f4744f9bb0ee9e.zip