[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #17443 [Tor]: tor-gencert --passphrase-fd improperly checks for newline
#17443: tor-gencert --passphrase-fd improperly checks for newline
------------------------------------------------+--------------------------
Reporter: junglefowl | Owner:
Type: defect | Status:
Priority: Medium | needs_review
Component: Tor | Milestone: Tor:
Severity: Normal | 0.2.8.x-final
Keywords: security 027-backport 026-backport | Version: Tor:
Parent ID: | 0.2.7.4-rc
Sponsor: | Resolution:
| Actual Points:
| Points:
------------------------------------------------+--------------------------
Changes (by teor):
* status: new => needs_review
* keywords: => security 027-backport 026-backport
Comment:
Marking as security / backport because the tor_strndup call could read
beyond buf if cp is NULL.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17443#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs