bug30040 602 B

  1. o Minor bugfixes (security):
  2. - Fix a potential double free bug when reading huge bandwidth files. The
  3. issue is not exploitable in the current Tor network because the
  4. vulnerable code is only reached when directory authorities read bandwidth
  5. files, but bandwidth files come from a trusted source (usually the
  6. authorities themselves). Furthermore, the issue is only exploitable in
  7. rare (non-POSIX) 32-bit architectures which are not used by any of the
  8. current authorities. Fixes bug 30040; bugfix on Bug found
  9. and fixed by Tobias Stoeckmann.