[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [tor/release-0.2.3] Clarify security impact of bug 6530

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [tor/release-0.2.3] Clarify security impact of bug 6530
From: nickm@xxxxxxxxxxxxxx
Date: Fri, 3 Aug 2012 17:41:56 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 03 Aug 2012 13:42:17 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-commits>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Sender: tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx

commit 55f635745afacefffdaafc72cc176ca7ab817546
Author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Date:   Fri Aug 3 11:16:13 2012 -0400

    Clarify security impact of bug 6530
---
 changes/bug6530 |    7 ++++---
 1 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/changes/bug6530 b/changes/bug6530
index a6b7caa..825bbb7 100644
--- a/changes/bug6530
+++ b/changes/bug6530
@@ -1,4 +1,5 @@
-  o Major bugfixes:
+  o Major security fixes:
     - Avoid a read of uninitializd RAM when reading a vote or consensus
-      document with an unrecognized flavor name.  Fixes bug 6530; bugfix on
-      0.2.2.6-alpha.
+      document with an unrecognized flavor name. This could lead to a
+      remote crash bug. Fixes bug 6530; bugfix on 0.2.2.6-alpha.
+      



_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [tor/release-0.2.3] Workaround for building EL5 RPMs by specifying rpmbuild-md5. Updated old note about using static libevent when building RPMs.
Next by Author: [tor-commits] [tor/release-0.2.3] Avoid possible segfault when handling networkstatus vote with bad flavor
Previous by thread: [tor-commits] [tor/release-0.2.3] Workaround for building EL5 RPMs by specifying rpmbuild-md5. Updated old note about using static libevent when building RPMs.
Next by thread: [tor-commits] [tor/release-0.2.3] Avoid possible segfault when handling networkstatus vote with bad flavor
Index(es):
- Author
- Thread