diff options
| author | Nick Mathewson <nickm@torproject.org> | 2016-10-17 14:55:05 -0400 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2016-10-17 14:55:05 -0400 |
| commit | 52b2b2c82f304629eb1128ed46fdd6edeba7eb67 (patch) | |
| tree | 48abf7e58221b17a422f5ca316830ca19cd89523 /changes | |
| parent | 66ecdcdd7573f1dafbdb1e14a7ef375f04be812c (diff) | |
| download | tor-52b2b2c82f304629eb1128ed46fdd6edeba7eb67.tar.gz tor-52b2b2c82f304629eb1128ed46fdd6edeba7eb67.zip | |
Fold 20384 into changelog
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/buf-sentinel | 11 |
1 files changed, 0 insertions, 11 deletions
diff --git a/changes/buf-sentinel b/changes/buf-sentinel deleted file mode 100644 index 7c5b829c19..0000000000 --- a/changes/buf-sentinel +++ /dev/null @@ -1,11 +0,0 @@ - o Major features (security fixes): - - - Prevent a class of security bugs caused by treating the contents - of a buffer chunk as if they were a NUL-terminated string. At - least one such bug seems to be present in all currently used - versions of Tor, and would allow an attacker to remotely crash - most Tor instances, especially those compiled with extra compiler - hardening. With this defense in place, such bugs can't crash Tor, - though we should still fix them as they occur. Closes ticket 20384 - (TROVE-2016-10-001). - |