mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-12-11 21:23:35 +01:00
194e31057f
Fix for TROVE-2017-001 and bug 21278. (Note: Instead of handling signed ints "correctly", we keep the old behavior, except for the part where we would crash with -ftrapv.)
9 lines
430 B
Groff
9 lines
430 B
Groff
o Major bugfixes (parsing):
|
|
- Fix an integer underflow bug when comparing malformed Tor versions.
|
|
This bug is harmless, except when Tor has been built with
|
|
--enable-expensive-hardening, which would turn it into a crash;
|
|
or on Tor 0.2.9.1-alpha through Tor 0.2.9.8, which were built with
|
|
-ftrapv by default.
|
|
Part of TROVE-2017-001. Fixes bug 21278; bugfix on
|
|
0.0.8pre1. Found by OSS-Fuzz.
|