Merge remote-tracking branch 'tor-github/pr/920' into maint-0.4.0

author: teor <teor@torproject.org> 2019-04-10 18:26:49 +1000
committer: teor <teor@torproject.org> 2019-04-10 18:26:49 +1000
commit: 454bdb22eeb4637a8bb5e40deb8454311f4ba4a2 (patch)
tree: 344bf1d4833049de8be5d5ea01a867c51ebb6ea5 /changes
parent: ffdca3dd14ceb0adacc290c3207391c9810b9fbe (diff)
parent: c24928dd8ffb4c833bae9701921d06072a147938 (diff)
download: tor-454bdb22eeb4637a8bb5e40deb8454311f4ba4a2.tar.gz
tor-454bdb22eeb4637a8bb5e40deb8454311f4ba4a2.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/changes/bug30041 b/changes/bug30041
new file mode 100644
index 0000000000..801c8f67ac
--- /dev/null
+++ b/changes/bug30041
@@ -0,0 +1,5 @@
+  o Minor bugfixes (hardening):
+    - Verify in more places that we are not about to create a buffer
+      with more than INT_MAX bytes, to avoid possible OOB access in the event
+      of bugs.  Fixes bug 30041; bugfix on 0.2.0.16.  Found and fixed by
+      Tobias Stoeckmann.
author	teor <teor@torproject.org>	2019-04-10 18:26:49 +1000
committer	teor <teor@torproject.org>	2019-04-10 18:26:49 +1000
commit	454bdb22eeb4637a8bb5e40deb8454311f4ba4a2 (patch)
tree	344bf1d4833049de8be5d5ea01a867c51ebb6ea5 /changes
parent	ffdca3dd14ceb0adacc290c3207391c9810b9fbe (diff)
parent	c24928dd8ffb4c833bae9701921d06072a147938 (diff)
download	tor-454bdb22eeb4637a8bb5e40deb8454311f4ba4a2.tar.gz tor-454bdb22eeb4637a8bb5e40deb8454311f4ba4a2.zip