[tor-bugs] #10505 [Tor]: Broken ASLR in windows executable

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon Dec 30 11:54:33 UTC 2013


#10505: Broken ASLR in windows executable
---------------------------+--------------------------------
     Reporter:  Blueberry  |      Owner:
         Type:  defect     |     Status:  new
     Priority:  major      |  Milestone:  Tor: 0.2.4.x-final
    Component:  Tor        |    Version:  Tor: 0.2.4.19
   Resolution:             |   Keywords:
Actual Points:             |  Parent ID:
       Points:             |
---------------------------+--------------------------------

Comment (by Blueberry):

 Sorry I didn't look at the Tor Browser. Now I noticed that the Tor Browser
 doesn't have ASLR too. This is much more worrying, this is a major high
 priority bug, because it is more likely that someone will want to write
 exploits for the browser. Every browser really must have ASLR. It doesn't
 prevent exploits entirely, of course, but it helps to increase the effort.
 Please fix this in the Browser as soon as possible.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10505#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list