[tbb-commits] [tor-browser-spec/master] Update 78esr audit
sysrqb at torproject.org
sysrqb at torproject.org
Thu Jan 14 15:25:17 UTC 2021
commit bd1b9be794844c316fa64ee9d534d95407f3e490
Author: Matthew Finkel <sysrqb at torproject.org>
Date: Thu Jan 14 15:17:11 2021 +0000
Update 78esr audit
Substitute placeholders `esrA` and `esrB` with actual commit hashes.
`esrA` is replaced with the commit tagged as
tor-browser-68.12.0esr-10.0-1-build1, and `esrB` is replaced as the last
audited commit for 78.6.1esr (tagged on FIREFOX_ESR_78_6_X_RELBRANCH).
---
audits/FF78_NETWORK_AUDIT | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/audits/FF78_NETWORK_AUDIT b/audits/FF78_NETWORK_AUDIT
index 9259c72..81308ea 100644
--- a/audits/FF78_NETWORK_AUDIT
+++ b/audits/FF78_NETWORK_AUDIT
@@ -1,6 +1,7 @@
Summary of findings: https://gitlab.torproject.org/tpo/applications/fenix/-/issues/34177
-`git diff esrA esrB` and then go over all the changes containing the
+`git diff 8da33f6c34c0ca5b1d7bca58ca86cb5e436333e8 0b024105bfcb2304529100c159eda55374dceec3`
+and then go over all the changes containing the
above mentioned potentially dangerous calls and features. Grep the diff for
the following strings and examine surrounding usage.
More information about the tbb-commits
mailing list