Skip to content

remote DoS in async DNS code

Greetings,

A bug exists in the label pointer handling of Tor's async DNS code that results in denial of service. A pointer loop, resulting from a pointer that points to itself or pointers that pointer to each other, will cause the parsing code to enter an endless loop.

This bug is present in Adam Langley's implementation and also in the version included in libevent.

Regards, Jon Oberheide

[Automatically added by flyspray2trac: Operating System: All]

Trac:
Username: jonojono

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information