diff options
| author | Nick Mathewson <nickm@torproject.org> | 2014-12-29 10:06:12 -0500 |
|---|---|---|
| committer | Nick Mathewson <nickm@torproject.org> | 2014-12-29 10:06:12 -0500 |
| commit | d7ecdd645a68eeb7a5ab8c839479a05cc8a1e10e (patch) | |
| tree | b435e00e41a0defd6d23e3f2caae927dfa88c05f /changes | |
| parent | e85f0c650c0509ceff777d0a7fafd6c953604ad8 (diff) | |
| download | tor-d7ecdd645a68eeb7a5ab8c839479a05cc8a1e10e.tar.gz tor-d7ecdd645a68eeb7a5ab8c839479a05cc8a1e10e.zip | |
Wipe all of the target space in tor_addr_{to,from}_sockaddr()
Otherwise we risk a subsequent memdup or memcpy copying
uninitialized RAM into some other place that might eventually expose
it. Let's make sure that doesn't happen.
Closes ticket 14041
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/bug14041 | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/changes/bug14041 b/changes/bug14041 new file mode 100644 index 0000000000..d3d6538483 --- /dev/null +++ b/changes/bug14041 @@ -0,0 +1,5 @@ + o Minor features (security): + - Clear all memory targetted by tor_addr_{to,from}_sockaddr(), + not just the part that's used. This makes it harder for data leak + bugs to occur in the event of other programming failures. + Resolves ticket 14041. |