[tor-bugs] #30041 [Core Tor/Tor]: OOB access with huge buffers (src/lib/buf/buffers.c)
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Aug 27 20:39:20 UTC 2019
#30041: OOB access with huge buffers (src/lib/buf/buffers.c)
-------------------------------------------------+-------------------------
Reporter: asn | Owner: (none)
Type: defect | Status: closed
Priority: Medium | Milestone: Tor:
| 0.2.9.x-final
Component: Core Tor/Tor | Version: Tor:
| unspecified
Severity: Normal | Resolution: fixed
Keywords: security-low, hackerone, bug- | Actual Points:
bounty, 029-backport, 035-backport, |
040-backport, consider-backport-after-0405 |
Parent ID: | Points:
Reviewer: nickm | Sponsor:
-------------------------------------------------+-------------------------
Comment (by teor):
Replying to [comment:13 cypherpunks]:
> i believe my issue is related. will this limit fix my bugs or should i
open new ticket?
>
>
> {{{
> [warn] {BUG} Bug: Non-fatal assertion !(buf->datalen >= INT_MAX -
at_most) failed in buf_read_from_tls at buffers_tls.c:73. (Stack trace not
available) (on Tor 0.4.0.5 )
> }}}
Looks like #25957, I will add your logs there.
If you can answer the questions on that ticket, we might be able to make
progress,
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/30041#comment:14>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list