[tbb-bugs] #22974 [Applications/Tor Browser]: NoScript (and Tor Browser) vulnerable to Mozilla Add-On Code Execution
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jun 21 17:08:34 UTC 2018
#22974: NoScript (and Tor Browser) vulnerable to Mozilla Add-On Code Execution
--------------------------------------+--------------------------
Reporter: tom | Owner: tbb-team
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-security | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Changes (by cypherpunks):
* keywords: => tbb-security
Comment:
Replying to [comment:3 gk]:
> we want to get rid of extension update pinging and extension updating
via AMO
Done with NoScript Classic.
> in our default Tor Browser configuration as a result of the HPKP fiasco
(see #20146).
But check what happens now, heh...
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22974#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list