[tor-bugs] #9901 [TorBrowserButton]: DoS of TBB when no Content-Type header and more than 512 bytes of content are sent
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Feb 28 09:56:55 UTC 2014
#9901: DoS of TBB when no Content-Type header and more than 512 bytes of content
are sent
-------------------------+-------------------------------------------------
Reporter: sqrt2 | Owner: mikeperry
Type: defect | Status: closed
Priority: normal | Milestone:
Component: | Version:
TorBrowserButton | Keywords: tbb-usability, interview, tbb-
Resolution: fixed | crash, MikePerry201402R
Actual Points: | Parent ID:
Points: |
-------------------------+-------------------------------------------------
Comment (by gk):
Replying to [comment:88 mikeperry]:
> For best practice, we need to prefix these functions with something
(torbutton_ has been our convention). The reason is because overlay
javascript is added into the browser XUL window scope, and we risk
collisions if another addon defines something named either handleConsole,
consoleObserver.
Ooops, I fully agree. Thanks for fixing this slip-up.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9901#comment:90>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list