Add changes file for #30040.

2024-11-27 22:03:31 +01:00 · 2019-04-09 17:30:14 +03:00 · 2019-04-09 17:30:14 +03:00 · 2cdc6b2005
commit 2cdc6b2005
parent 9ce0bdd226
1 changed files with 9 additions and 0 deletions
--- a/changes/bug30040
+++ b/changes/bug30040
@ -0,0 +1,9 @@
+  o Minor bugfixes (security):
+    - Fix a potential double free bug when reading huge bandwidth files. The
+      issue is not exploitable in the current Tor network because the
+      vulnerable code is only reached when directory authorities read bandwidth
+      files, but bandwidth files come from a trusted source (usually the
+      authorities themselves). Furthermore, the issue is only exploitable in
+      rare (non-POSIX) 32-bit architectures which are not used by any of the
+      current authorities. Fixes bug 30040; bugfix on 0.3.5.1-alpha. Bug found
+      and fixed by Tobias Stoeckmann.