[tor-bugs] #8037 [Tor]: Specialy crafter microdesc could trigger to flush up to 16MB uninited heap allocated memory to media
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Jan 22 22:58:56 UTC 2013
#8037: Specialy crafter microdesc could trigger to flush up to 16MB uninited heap
allocated memory to media
----------------------------+-----------------------------------------------
Reporter: cypherpunks | Owner:
Type: defect | Status: closed
Priority: normal | Milestone: Tor: 0.2.4.x-final
Component: Tor | Version:
Resolution: invalid | Keywords:
Parent: | Points:
Actualpoints: |
----------------------------+-----------------------------------------------
Comment(by cypherpunks):
Auths could generate such md, of course they could to do more worse things
but it's not good to flush memory to media even if auths decide so. It
would be better to change tor_strndup to memcpy.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8037#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list