mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-24 20:33:31 +01:00
b7c172c9ec
This is important, since otherwise an attacker can use timing info to probe the internal network. Also, add an option (ExtendAllowPrivateAddresses) so that TestingTorNetwork won't break. Fix for bug 6710; bugfix on all released versions of Tor.
8 lines
304 B
Plaintext
8 lines
304 B
Plaintext
o Major bugfixes (security):
|
|
- Reject any attempt to extend to an internal address. Without
|
|
this fix, a router could be used to probe addresses on an
|
|
internal network to see whether they were accepting
|
|
connections. Fix for bug 6710; bugfix on all released versions
|
|
of Tor.
|
|
|