[tor-bugs] #22693 [Applications/Tor Browser]: Connection not secure OS leak
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jun 22 08:01:34 UTC 2017
#22693: Connection not secure OS leak
--------------------------------------+--------------------------
Reporter: Dbryrtfbcbhgf | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Changes (by gk):
* priority: Very High => Medium
* severity: Critical => Normal
Comment:
The link shows your real OS because Firefox constructs it internally
before showing your the Learn More option. The base URL is the value of
`app.support.baseURL` and `%VERSION%` etc. are replaced according to your
system before shown to you.
Now the question is can the website, where the message is displayed, learn
that as well?
See as well #21321.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22693#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list