Custom Query (184 matches)

Filters
 
Or
 
  
 
Columns

Show under each result:


Results (101 - 184 of 184)

1 2
Ticket Summary Keywords Status Owner Type Priority
#20055 Remove relays that fail to rotate onion keys from the consensus tor-spec, tor-dirauth, security, key-rotation, network-health new enhancement Medium
#19280 Replace or fork NoScript in the Tor Browser tbb-security, noscript reopened tbb-team project Medium
#18645 Replace our http parser with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing new task Medium
#18644 Replace our routerparse.c core with something machine-generated tor-dos security tor-relay tor-client technical-debt parsing new task Medium
#27326 Replace packed_cell_t and supporting code with stuff generated by trunnel trunnel wireformat heartbleed-safety security parsing new enhancement Medium
#18643 Replace the most error-prone binary parsers with trunnel tor-dos security tor-relay tor-client technical-debt parsing trunnel new enhancement Medium
#33119 Resolve TROVE-2020-001 043-must, security, 044-must needs_review ahf defect High
#31569 Revert #4427 to be on par with Fennec ESR68 and avoid regressions ff68-esr, tbb-security, tbb-parity, tbb-mobile new tbb-team defect Medium
#27324 Rework AUTHENTICATE cell parsing and remaining generation with trunnel trunnel wireformat heartbleed-safety security parsing accepted rl1987 enhancement Medium
#27328 Rework EXTEND and EXTENDED cells with trunnel trunnel wireformat heartbleed-safety security parsing new enhancement Medium
#27329 Rework RELAY cell wire format handling with trunnel trunnel wireformat heartbleed-safety security parsing new enhancement Medium
#32425 SVG icons are blocked in the video player in Safest security setting tbb-security-slider new tbb-team defect Medium
#20322 SafeSEH support for mingw-w64 for Tor Browser on Windows tbb-security, TorBrowserTeam201711, GeorgKoppen201711, tbb-rbm new tbb-team defect Medium
#29917 Safest security level breaks reader view buttons tbb-security-slider new tbb-team defect Medium
#32389 Sandbox Graphite using RLBox for Linux tbb-security, GeorgKoppen202003, TorBrowserTeam202004R needs_review gk task Medium
#18346 Separate the various roles that directory authorities play, from a configuration POV prop257, dirauth, tor-dos, security, needs-design new enhancement High
#6948 Shared memory for zygote mind meld tbb-security, tbb-sandboxing new tbb-team enhancement Medium
#18037 Should the user be allowed to specify FQDNs for HS TARGETs? tor-hs, dns, maybe-bad-idea, security-risk, single-onion new defect Low
#21983 Should we do more to discourage custom prefs and nonstandard addons? tbb-usability, tbb-security new tbb-team defect Medium
#18288 Sign Tor Browser binaries on Windows (not just the setup executable) tbb-security, tbb-usability new erinn enhancement Medium
#31905 Sign dmg images (not just their contents) tbb-security, tbb-sign, TorBrowserTeamTriaged new tbb-team enhancement Medium
#26553 Sign our own extensions in Tor Browser ff60-esr, tbb-security, AffectsTails, TorBrowserTeam201904, GeorgKoppen201904 new tbb-team defect High
#31183 Situational symlink attacks on ControlPortWriteToFile etc. hackerone, bug-bounty, security, 041-backport?, 042-deferred-20190918 new defect Medium
#13056 Some stack canaries are still missing on Tor Browser binaries tbb-security new tbb-team defect Medium
#12968 Specify HEASLR (High Entropy Address Space Layout Randomization) in MinGW-w64 tbb-security, tbb-rbm, boklm201811, TorBrowserTeam201908 needs_revision tbb-team enhancement Very High
#17579 Split tor-gencert into "make cert" and "sign" portions tor-relay key-management cli security new enhancement Medium
#33375 Stop advertising an IPv6 exit policy when DNS is broken for IPv6 needs-proposal, security-review-dos-risk, extra-review, no-backport, ipv6, tor-exit, tor-dns, 044-must needs_information neel defect Medium
#17521 Support capsicum(4) on FreeBSD tor-relay, security, sandboxing, BSD, capsicum, 034-triage-20180328, 034-removed-20180328 assigned shawn.webb enhancement Medium
#17091 Support our own hotfix mechanism tbb-security new tbb-team defect Medium
#12418 TBBs with UBSan create lots of errors when running tbb-security, TorBrowserTeam201711 assigned tbb-team defect Medium
#21030 Test integration of PartitionAlloc/HardenedPartitionAlloc in Tor Browser tbb-security new tbb-team task Medium
#20149 Test that static public key pins are working tbb-security, tls, ReleaseTrainMigration assigned tbb-team enhancement High
#12820 Test+Recommend Tor Browser with MS EMET (Enhanced Mitigation Experience Toolkit) tbb-security, tbb-isec-report, GeorgKoppen201610, TorBrowserTeam201610, ff52-esr assigned tbb-team project Medium
#22971 The XPI signing mechanism needs to use different hash functions. tbb-security, ff60-esr new tbb-team defect High
#21908 Tor Browser breaks response headers sometimes tbb-security new tbb-team defect Medium
#20326 Tor Browser forgets HTTPS sometimes tbb-security, https-everywhere new tbb-team defect Medium
#20955 Tor Browser memory hardening tbb-security new tbb-team defect Medium
#20212 Tor can be forced to open too many circuits by embedding .onion resources guard-discovery, TorBrowserTeam201803, 034-roadmap-proposed, security, tor-hs, 042-deferred-20190918 network-team-roadmap-2020Q1 new tbb-team enhancement Medium
#29927 Tor protocol errors causing silent dropped cells tor-hs, diagnostic, mystery, security new defect High
#1299 Tor should verify signatures before parsing tor-security, tor-crypto, tor-client, parse, safety, 035-removed-20180711 new defect Medium
#17901 Tor would bind ControlPort to public ip address if it has no localhost interface tor-control misconfiguration security easy new defect High
#7193 Tor's sybil protection doesn't consider IPv6 ipv6, intro, tor-dirauth, security, sybil, network-health, outreachy-ipv6, network-team-roadmap-2020Q1, 044-must needs_revision enhancement Medium
#31022 Tor's windows "--service install" should warn if it installs on a global writeable path hackerone, bug-bounty, security, 043-can?, 044-must assigned ahf defect Medium
#13893 Torbrowser crashes on start when using MS EMET 5.x tbb-security, tbb-crash, tbb-usability-stoppoint-app, fuck-mingw-gcc, GeorgKoppen201609, TorBrowserTeam201610, ff52-esr assigned tbb-team defect High
#10393 Torbrowser updates are verified through the Tor consensus tbb-security, tbb-update new tbb-team project Medium
#10397 Torbrowser's updater integrates additional protections from Thandy's threat model tbb-security, tbb-update new tbb-team project Medium
#10394 Torbrowser's updater updates HTTPS-everywhere tbb-security, TorBrowserTeam201805, https-everywhere new tbb-team task Medium
#15514 Trim the NoScript whitelist tbb-security, noscript assigned tbb-team defect Medium
#29803 Trust Tor Project domain in NoScript when TorButton security level is changed noscript, tbb-security-slider new tbb-team enhancement Medium
#20971 Try building Tor Browser with SafeStack tbb-security new tbb-team defect Medium
#17505 UBSan is freezing Tor Browser tbb-security, tbb-crash needs_information tbb-team defect Medium
#33481 Update lucetc for RLBox on macOS tbb-security, tbb-rbm, GeorgKoppen202002, TorBrowserTeam202004R needs_review gk defect Medium
#22917 Use --disable-auto-import on mingw builds of TBB and tor tbb-security new tbb-team defect Medium
#27462 Use OSS-Fuzz for Tor Browser tbb-security new tbb-team task Medium
#33410 Use RLBox for sandboxing Graphite on macOS tbb-security, GeorgKoppen202002, TorBrowserTeam202004R needs_review tbb-team task Medium
#32379 Use RLBox for sandboxing third-party libraries tbb-security, GeorgKoppen202003 new tbb-team project Medium
#22699 Use browser pref for javascript at High Security Level tbb-security, tbb-security-slider, TorBrowserTeam201708 new tbb-team enhancement High
#23238 Using Application Verifier Within Your Software Development Lifecycle tbb-security assigned tbb-team task Medium
#13753 Validate is_canonical more thoroughly tor-relay, security, tor-sponsorS-orphan new enhancement High
#26517 When I have security setting set to "Safest" and I open NoScrip's preferences and click reset, TorBrowser still says Security setting "Safest" even though many sites are now whitelisted ff60-esr, tbb-security-slider, noscript new tbb-team defect High
#24570 [Meta] Mitigations for DLL Injection tbb-security new tbb-team defect Medium
#15660 [feature suggestion] Need signal to totally switch to the new set of circuits security needs-design tor-client new defect Medium
#20744 add 'media.source.enabled' only where JS is enabled in security settings tbb-security-slider, tbb-usability-website new tbb-team defect Medium
#27921 apparent DOS / impairment-of-service against FallbackDirs using DIR requests, please evaluate for possible mitigation tor-dos, 040-roadmap-proposed, postfreeze-ok, security, 040-deferred-20190220 new enhancement Medium
#15470 cannot edit the certificates in Tor browser, tbb-security, CNNIC reopened tbb-team defect Very High
#24509 circuit_can_use_tap() should only allow TAP for v2 onion services prop224, tor-hs, security-low, easy, intro, 034-triage-20180328, security 035-removed new defect Medium
#23362 consider performing network operations in a dedicated process tbb-security, tbb-sandboxing, ff78-esr new tbb-team enhancement Medium
#31440 consider using Hardened Malloc for better security in TBB tbb-security new tbb-team enhancement Medium
#13065 counter downgrade / stale mirror attacks on RecommendedTBBVersions - sign / verify tbb versions file tbb-security, tbb-update new tbb-team defect Medium
#23061 crypto_rand_double() should produce all possible outputs on platforms with 32-bit int fast-fix, tor-relay, security-low, privcount, review-group-22, 034-triage-20180328, 034-removed-20180328, 031-unreached-backport, 035-roadmap-subtask, 035-triaged-in-20180711, 040-unreached-20190109 new defect Medium
#27518 firefox tries to access system's snapd profile tbb-security, tbb-8.0-issues, tbb-regression new tbb-team defect Medium
#13873 hard lock tails/torbrowser security, usability, fuzzing new tbb-team enhancement High
#32794 improve OOS (out-of-sockets) handler victim selection and more security, 044-can assigned starlight defect Medium
#33488 lucetc does not procude reproducible .so/.dylib files tbb-security, GeorgKoppen202003 assigned gk defect Medium
#21601 media.webaudio.enabled is not a thing anymore -- we should not govern it with our security slider tbb-torbutton, tbb-security-slider new tbb-team defect Medium
#24455 messages out of order in the tor log due to stored logs security-low, 033-triage-20180320, 033-removed-20180320 new defect Medium
#2340 protect users against freeze, replay and version-rollback attacks tbb-security new tbb-team defect Very High
#23414 rep_hist_format_hs_stats() should add noise, then round tor-relay, security-low, privcount, 034-triage-20180328, 034-removed-20180328, 031-unreached-backport new defect Medium
#23323 sample_laplace_distribution should produce a valid result on 0.0 security-low, tor-relay, 026-backport-maybe, 034-triage-20180328, 034-removed-20180328, 031-unreached-backport new defect Medium
#23415 sample_laplace_distribution() should take multiple random inputs tor-relay, security-low, privcount, 026-backport-maybe, 034-triage-20180328, 034-removed-20180328, 031-unreached-backport new defect Medium
#21009 sandboxed OSX browser hangs if printing is attempted tbb-security, tbb-sandboxing assigned mcs defect High
#22000 update OSX browser sandbox profile for e10s ff52-esr, tbb-security, tbb-sandboxing, tbb-e10s, TorBrowserTeam201707 new tbb-team defect Medium
#27515 video placeholder didn't work in Tor browser 8.0 on highest security level tbb-8.0-issues, tbb-regression, tbb-security-slider, noscript needs_information tbb-team defect Medium
#15825 webgl.disable-extensions true about:config setting may allow DoS and breaks websites tbb-security, tbb-fingerprinting new tbb-team defect Medium
1 2
Note: See TracQuery for help on using queries.