Accueil Explorer Aide
Connexion
piros
/
tor
3
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Parcourir la source

fixup! Don't atoi off the end of a buffer chunk.

Credit AFL in the changes file.
Nick Mathewson il y a 7 ans
Parent
c4f2faf301
commit
ff088ea7d7
1 fichiers modifiés avec 3 ajouts et 2 suppressions
Vue séparée Afficher les stats Diff
  1. 3 2
      changes/bug20894

+ 3 - 2
changes/bug20894
Voir le fichier 

@@ -3,6 +3,7 @@
 
       do not read off the end of the buffer. This bug was a potential
 
       remote denial-of-service attack against Tor clients and relays.
 
       A workaround was released in October 2016, which prevents this
 
-      bug from crashing Tor.  This is a fix for the underlying issue,
 
+      bug from crashing Tor. This is a fix for the underlying issue,
 
       which should no longer matter (if you applied the earlier patch).
 
-      Fixes bug 20894; bugfix on 0.2.0.16-alpha.
 
+      Fixes bug 20894; bugfix on 0.2.0.16-alpha. Bug found by fuzzing
 
+      using AFL (http://lcamtuf.coredump.cx/afl/).