trove-2017-011 465 B

  1. o Major bugfixes (security):
  2. - Fix a denial of service bug where an attacker could use a malformed
  3. directory object to cause a Tor instance to pause while OpenSSL would
  4. try to read a passphrase from the terminal. (If the terminal was not
  5. available, tor would continue running.) Fixes bug 24246; bugfix on
  6. every version of Tor. Also tracked as TROVE-2017-011 and
  7. CVE-2017-8821. Found by OSS-Fuzz as testcase 6360145429790720.