mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-14 07:03:44 +01:00
890ae4fb1a
We were looking for the first instance of "directory-signature " when instead the correct behavior is to look for the first instance of "directory-signature " at the start of a line. Unfortunately, this can be exploited as to crash authorities while they're voting. Fixes #40316; bugfix on 0.2.2.4-alpha. This is TROVE-2021-002, also tracked as CVE-2021-28090.
6 lines
288 B
Plaintext
6 lines
288 B
Plaintext
o Major bugfixes (security, denial of service):
|
|
- Fix a bug in appending detached signatures to a pending consensus
|
|
document that could be used to crash a directory authority.
|
|
Fixes bug 40316; bugfix on 0.2.2.6-alpha. Tracked as
|
|
TROVE-2021-002 and CVE-2021-28090.
|