mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-30 23:53:32 +01:00
50b06a2b76
We have a CVE # for this bug.
9 lines
349 B
Plaintext
9 lines
349 B
Plaintext
o Major bugfixes (security)
|
|
- Fix a heap overflow bug where an adversary could cause heap
|
|
corruption. This bug potentially allows remote code execution
|
|
attacks. Found by debuger. Fixes CVE-2011-0427. Bugfix on
|
|
0.1.2.10-rc.
|
|
o Defensive programming
|
|
- Introduce output size checks on all of our decryption functions.
|
|
|