aboutsummaryrefslogtreecommitdiff
path: root/ReleaseNotes
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2012-10-23 17:12:37 -0400
committerNick Mathewson <nickm@torproject.org>2012-10-23 21:32:26 -0400
commit8905789170269d29ad87530642ecc2a6a891219b (patch)
tree86fa9972a5d4471e8fa7dc55b56828aaadcaa809 /ReleaseNotes
parent8743080a289a20bfaf0a67d6382ba0c2a6d6534d (diff)
downloadtor-8905789170269d29ad87530642ecc2a6a891219b.tar
tor-8905789170269d29ad87530642ecc2a6a891219b.tar.gz
Fix binary search on lists of 0 or 1 element.
The implementation we added has a tendency to crash with lists of 0 or one element. That can happen if we get a consensus vote, v2 consensus, consensus, or geoip file with 0 or 1 element. There's a DOS opportunity there that authorities could exploit against one another, and which an evil v2 authority could exploit against anything downloading v2 directory information.. This fix is minimalistic: It just adds a special-case for 0- and 1-element lists. For 0.2.4 (the current alpha series) we'll want a better patch. This is bug 7191; it's a fix on 0.2.0.10-alpha.
Diffstat (limited to 'ReleaseNotes')
0 files changed, 0 insertions, 0 deletions