[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #5137 [Obfsproxy]: crypt_free() might not zero enough?
#5137: crypt_free() might not zero enough?
-----------------------+----------------------------------------------------
Reporter: Sebastian | Owner: asn
Type: defect | Status: needs_review
Priority: normal | Milestone:
Component: Obfsproxy | Version:
Keywords: | Parent:
Points: | Actualpoints:
-----------------------+----------------------------------------------------
Changes (by Sebastian):
* status: new => needs_review
Comment:
Branch bug5137 in my repository has the fix.
ioerror points out that just zeroing might not be enough as the compiler
could optimize that out, we'd need to overwrite it with stuff and then do
something with it. But that seems like a more general thing, that could
also affect tor?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5137#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs