[tbb-bugs] #18935 [Applications/Tor Browser]: MS bugs - Danger! Windows updates break everything on their way!

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed May 4 12:35:29 UTC 2016

#18935: MS bugs - Danger! Windows updates break everything on their way!
 Reporter:  bugzilla                  |          Owner:  tbb-team
     Type:  defect                    |         Status:  needs_information
 Priority:  High                      |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Critical                  |     Resolution:
 Keywords:  tbb-crash                 |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:

Comment (by bugzilla):

 Replying to [comment:11 gk]:
 > Replying to [comment:9 bugzilla]:
 > > Well, fully updated system with EAF disabled brought us to:
 > > {{{
 > > Faulting application name: firefox.exe, version:, time stamp:
 > > Faulting module name: xul.dll, version:, time stamp:
 > > Exception code: 0xc0000005
 > > Fault offset: 0x0003fb34
 > > }}}
 > > Seems opening a lot of Trac tickets in the background is a good
 > Seems to work for me on an up-to-date Win 7 system. I bookmarked 20 trac
 tickets and opened them at the same time. Everything still worked. Do you
 have more detailed steps to reproduce the crashes?
 > At a more generic level: What are we supposed to do with this ticket and
 the numerous issues you mentioned? How is this still actionable?
 You installed the latest EMET on an up-to-date Win 7, selected Max Sec,
 copied the ruleset for FF to TB's firefox.exe, disabled EAF in it,
 selected Audit Mode (or welcome SimExecFlow
 https://trac.torproject.org/projects/tor/ticket/13893#comment:56), and
 restarted the system. Then you did STR, right?

 At generic: this ticket is a general warning for users of TBB on Windows
 that shows what is happening in various situations if they do or don't
 install or install partially the latest updates from MS, install EMET,
 etc. Also it is a recycle bin for all TBB crashes on Windows that users
 can report into. And if somebody has a free time and willing to
 investigate some he is welcome.

 TBB Team: it's not worth effort to dig the MS crap.
 0xc0000005 = ACCESS_VIOLATION or SIGSEGV or GPF - it could be anything...
 0xc00000fd = STACK_OVERFLOW - it seems to be the thing you've discovered
 on hardened...
 And your CYGWIN WIN 6.3 x64 test machine is affected with vulnerable
 That's all.

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18935#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tbb-bugs mailing list