[tor-bugs] #16926 [Tor Browser]: Multiple OS: Tor Browser leaks domains to system DNS management.

[Tor Bug Tracker & Wiki]

#16926: Multiple OS: Tor Browser leaks domains to system DNS management.
-------------------------------+------------------------------
     Reporter:  DrMikeTwiddle  |      Owner:  tbb-team
         Type:  defect         |     Status:  new
     Priority:  critical       |  Milestone:
    Component:  Tor Browser    |    Version:  Tor: unspecified
   Resolution:                 |   Keywords:
Actual Points:                 |  Parent ID:
       Points:                 |
-------------------------------+------------------------------

Comment (by cypherpunks):

 It's [https://gitweb.torproject.org/tor-
 browser.git/tree/netwerk/dns/nsDNSService2.cpp?h=tor-
 browser-38.2.1esr-5.0-2#n889 unlikely] Tor Browser (firefox exactly) can
 to leak dns stuff. (if plugins disabled).
 It could to pass every hostname to getaddrinfo, so //broken system// could
 to mess with hostname and to leak something, but [https://mxr.mozilla.org
 /mozilla-esr38/source/nsprpub/pr/src/misc/prnetdb.c#2232 only if hostname
 contains '%']. (btw, it should be very //broken system// after
 [https://mxr.mozilla.org/mozilla-
 esr38/source/nsprpub/pr/src/misc/prnetdb.c#2156 AI_NUMERICHOST flag]
 used).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16926#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online