Fix detection of point to insert signatures on a pending consensus.

We were looking for the first instance of "directory-signature " when instead the correct behavior is to look for the first instance of "directory-signature " at the start of a line. Unfortunately, this can be exploited as to crash authorities while they're voting. Fixes #40316; bugfix on 0.2.2.4-alpha. This is TROVE-2021-002, also tracked as CVE-2021-28090.
author: Nick Mathewson <nickm@torproject.org> 2021-03-03 15:14:31 -0500
committer: Nick Mathewson <nickm@torproject.org> 2021-03-15 08:56:58 -0400
commit: 890ae4fb1adfa13e37aaf5261e089e8c195a75cf (patch)
tree: d033c449d75a45c1586239458530d96fe131cb1a /changes
parent: 296a557bfc5769617da53eee5a8670e2428ca458 (diff)
download: tor-890ae4fb1adfa13e37aaf5261e089e8c195a75cf.tar.gz
tor-890ae4fb1adfa13e37aaf5261e089e8c195a75cf.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/changes/bug40316 b/changes/bug40316
new file mode 100644
index 0000000000..cd275b5c9c
--- /dev/null
+++ b/changes/bug40316
@@ -0,0 +1,5 @@
+  o Major bugfixes (security, denial of service):
+    - Fix a bug in appending detached signatures to a pending consensus
+      document that could be used to crash a directory authority.
+      Fixes bug 40316; bugfix on 0.2.2.6-alpha. Tracked as
+      TROVE-2021-002 and CVE-2021-28090.
author	Nick Mathewson <nickm@torproject.org>	2021-03-03 15:14:31 -0500
committer	Nick Mathewson <nickm@torproject.org>	2021-03-15 08:56:58 -0400
commit	890ae4fb1adfa13e37aaf5261e089e8c195a75cf (patch)
tree	d033c449d75a45c1586239458530d96fe131cb1a /changes
parent	296a557bfc5769617da53eee5a8670e2428ca458 (diff)
download	tor-890ae4fb1adfa13e37aaf5261e089e8c195a75cf.tar.gz tor-890ae4fb1adfa13e37aaf5261e089e8c195a75cf.zip