Query syntax:

  • Use tag1 tag2 to match all tags.
  • tag1 or tag2 will match any tag.
  • Negate a tag with -tag1.
  • Group sub-queries with (tag1 or tag2).
  • Quote strings to include special characters.
  • Restrict search to a specific realm with realm:wiki.

Showing objects tagged with 'tbb-security'

  • #2340 defect: protect users against freeze, replay and version-rollback attacks (new)
  • #5791 project: Gather apparmor/selinux/seatbelt profiles for each component of TBB (new)
  • #6948 enhancement: Shared memory for zygote mind meld (new)
  • #7501 task: Audit PDF.js (new)
  • #10393 project: Torbrowser updates are verified through the Tor consensus (new)
  • #10394 task: Torbrowser's updater updates HTTPS-everywhere (needs_review)
  • #10397 project: Torbrowser's updater integrates additional protections from Thandy's ... (new)
  • #10498 defect: Get only the NoScript we want to our users (new)
  • #12418 defect: TBBs with UBSan create lots of errors when running (assigned)
  • #12420 task: Investigate deploying STACK to check for optimization-unstable code (new)
  • #12425 task: Investigate setjmp/longjmp-based exception handling for Tor Browser on ... (new)
  • #12427 task: Investigate Virtual Table Verification (VTV) hardening for Tor Browser ... (new)
  • #12429 enhancement: Enable Assertions in Tor Browser release builds (new)
  • #12736 defect: DLL hijacking vulnerability in TBB (new)
  • #12820 project: Test+Recommend Tor Browser with MS EMET (Enhanced Mitigation ... (assigned)
  • #12950 task: Backport Windows ASLR forcing patch (new)
  • #12968 enhancement: Specify HEASLR (High Entropy Address Space Layout Randomization) in ... (needs_revision)
  • #13033 task: Apply mixed content blocking patch? (new)
  • #13056 defect: Some stack canaries are still missing on Tor Browser binaries (new)
  • #13065 defect: counter downgrade / stale mirror attacks on RecommendedTBBVersions - ... (new)
  • #13367 defect: Rate limit gyroscope sampling frequency on FF mobile (new)
  • #13730 enhancement: Make use of MAR files with more than one signature (new)
  • #13747 enhancement: Block non .onion content on .onion addresses (mixed content blocking) (new)
  • #13893 defect: Torbrowser crashes on start when using MS EMET 5.x (assigned)
  • #14676 task: Implement update verification via Tor consensus in Tor Browser (new)
  • #14985 defect: NoScript Clickjacking warning when clicking on embedded content (new)
  • #15470 defect: cannot edit the certificates in Tor browser, (reopened)
  • #15514 defect: Trim the NoScript whitelist (assigned)
  • #15687 defect: Make Tor Browser work with AppLocker (new)
  • #15825 defect: webgl.disable-extensions true about:config setting may allow DoS and ... (new)
  • #16352 task: Play with Intel's MPX for hardened Tor Browser builds (new)
  • #16926 defect: Multiple OS: Tor Browser leaks domains to system DNS management. (new)
  • #17091 defect: Support our own hotfix mechanism (new)
  • #17216 enhancement: Make Tor Browser's updater work over Hidden Services (new)
  • #17505 defect: UBSan is freezing Tor Browser (needs_information)
  • #17569 defect: Add uBlock Origin to the Tor Browser (reopened)
  • #18288 enhancement: Sign Tor Browser binaries on Windows (not just the setup executable) (new)
  • #18375 defect: HTTPSEverywhere/NoScript becomes disabled and not shown in ... (new)
  • #18497 enhancement: Check that MAR signing is done properly on the files available in the ... (assigned)
  • #19280 project: Replace or fork NoScript in the Tor Browser (reopened)
  • #19850 enhancement: Disable Plaintext HTTP Clearnet Connections (new)
  • #20146 defect: Firefox bug - (CVE-2016-5284) ESR-45/Tor Browser certificate pinning ... (needs_review)
  • #20149 enhancement: Test that static public key pins are working (assigned)
  • #20322 defect: SafeSEH support for mingw-w64 for Tor Browser on Windows (new)
  • #20326 defect: Tor Browser forgets HTTPS sometimes (new)
  • #20361 task: Investigate CFI means for usage in Tor Browser (new)
  • #20955 defect: Tor Browser memory hardening (new)
  • #20957 defect: Get DieHarder working with Tor Browser (needs_revision)
  • #20971 defect: Try building Tor Browser with SafeStack (new)
  • #21009 defect: sandboxed OSX browser hangs if printing is attempted (assigned)
  • #21030 task: Test integration of PartitionAlloc/HardenedPartitionAlloc in Tor Browser (new)
  • #21448 defect: Identify what build flags we should be using for security, and use them (new)
  • #21908 defect: Tor Browser breaks response headers sometimes (new)
  • #21983 defect: Should we do more to discourage custom prefs and nonstandard addons? (new)
  • #22000 defect: update OSX browser sandbox profile for e10s (new)
  • #22315 enhancement: Make use of interceptor to protect memory on Windows (spin-off from #12426) (new)
  • #22584 defect: More RWX memory pages for TBB on some Windows versions (assigned)
  • #22699 enhancement: Use browser pref for javascript at High Security Level (new)
  • #22917 defect: Use --disable-auto-import on mingw builds of TBB and tor (new)
  • #22971 defect: The XPI signing mechanism needs to use different hash functions. (new)
  • #22974 defect: NoScript (and Tor Browser) vulnerable to Mozilla Add-On Code Execution (new)
  • #22985 defect: Can we simplify and clarify click-to-play of audio/video? (new)
  • #23238 task: Using Application Verifier Within Your Software Development Lifecycle (assigned)
  • #23362 enhancement: consider performing network operations in a dedicated process (new)
  • #23658 project: Improve content sandboxing Tor Browser users on Windows (new)
  • #23660 defect: Handle exceptions in content sandboxing code for Tor Browser on ... (new)
  • #23664 defect: Deal with UUID for content sandbox temp folder on Windows and Mac (new)
  • #24570 defect: [Meta] Mitigations for DLL Injection (new)
  • #25559 defect: Miscellaneous security- and privacy-related prefs for Tor Browser (new)
  • #25795 defect: Decide which settings to hide in Tor Browser (new)
  • #26553 defect: Sign our own extensions in Tor Browser (new)
  • #27123 defect: Investigate PING/SETTINGS-related timing side-channels (new)
  • #27462 task: Use OSS-Fuzz for Tor Browser (new)
  • #27518 defect: firefox tries to access system's snapd profile (new)
  • #29148 defect: Backport the distrust of Symantec, GeoTrust, RapidSSL, Thawte, ... (new)
  • #29790 task: Add build option to store profile in HOME directory (needs_information)
  • #31440 enhancement: consider using Hardened Malloc for better security in TBB (new)
  • #31569 defect: Revert #4427 to be on par with Fennec ESR68 and avoid regressions (new)
  • #31716 defect: Harden obfs4proxy.exe shipped with Tor Browser (new)
  • #31905 enhancement: Sign dmg images (not just their contents) (new)
  • #32379 project: Use RLBox for sandboxing third-party libraries (new)
  • #32380 defect: Get current Tor Browser code ready for RLBox (closed: wontfix)
  • #32389 task: Sandbox Graphite using RLBox for Linux (needs_revision)
  • #32469 defect: Keep an eye on potential omni.ja signing (new)
  • #32504 defect: Harden our macOS builds (new)
  • #32505 defect: Tighten our rules in our entitlements file for macOS (closed: fixed)
  • #32506 defect: Move to different entitlements files for parent and child processes (new)
  • #32507 defect: Move closer to the way Mozilla is signing macOS bundles (new)
  • #32523 enhancement: Consider building tor-browser-build containers with Bitcoin Core's ... (new)
  • #32896 enhancement: Keep track of security updates to parts of Tor Browser (new)
  • #32898 task: Get rid of binary blobs in source code/toolchains we use/build for ... (new)
  • #33390 enhancement: Consider Open in Browser addon (new)
  • #33410 task: Use RLBox for sandboxing Graphite on macOS (needs_revision)
  • #33481 defect: Update lucetc for RLBox on macOS (needs_revision)
  • #33487 defect: Prepare lucetc and wasi-sdk for macOS build for RLBox Support (needs_revision)
  • #33488 defect: lucetc does not procude reproducible .so/.dylib files (assigned)
  • #34136 defect: Audit the Content Process Sandbox Level bump in ESR68.8 on Windows (closed: wontfix)