[tor-bugs] #24400 [Core Tor/Tor]: Seccomp filter incorrectly tries to act on strings, allowing sandbox bypass
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Nov 26 04:54:01 UTC 2017
#24400: Seccomp filter incorrectly tries to act on strings, allowing sandbox bypass
--------------------------+------------------------------------
Reporter: Sebastian | Owner: (none)
Type: defect | Status: new
Priority: Medium | Milestone: Tor: 0.3.3.x-final
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: sandbox | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------+------------------------------------
Comment (by cypherpunks):
I think `cat $ hello.c` should probably be `$ cat hello.c` instead.
Tested the demonstration files and they work. There is also a danger of
thread concurrency bugs when trying to read memory in a filter context as
well.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/24400#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list