[tor-bugs] #12227 [Tor]: ASan stack-buffer-overflow in prune_v2_cipher_list -- not exploitable
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Jun 8 20:15:26 UTC 2014
#12227: ASan stack-buffer-overflow in prune_v2_cipher_list -- not exploitable
---------------------------+---------------------------
Reporter: starlight | Owner:
Type: defect | Status: new
Priority: normal | Milestone:
Component: Tor | Version: Tor: 0.2.4.22
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
---------------------------+---------------------------
Comment (by cypherpunks):
or just?
{{{
prune_v2_cipher_list(void)
{
uint16_t *inp, *outp;
- const SSL_METHOD *m = SSLv23_method();
+ const SSL_METHOD *m = SSLv3_method();
inp = outp = v2_cipher_list;
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12227#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list