Torproject


reports in last 90 days

18

disclosed resolved issues

13

disclosed informative issues

2

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

None Detect Tor Browser's language

Privacy Violation ryotak Time to triage: 4 Days and 6 hours


Time to close: 0 Days and 22 hours
Resolved

Low Detecting Tor Browser UI Language

Privacy Violation xiaoyinl Issue was not triaged


Time to close: 5 Days and 3 hours
Resolved

Medium Email Spoofing Possible on torproject.org Email Domain

Business Logic Errors greenwolf Issue was not triaged


Time to close: 1 Days and 20 hours
Not-applicable

No rating Expose user IP if TOR crashs

None supplied rbcafe Issue was not triaged


Time to close: 4 Days and 20 hours
Informative

No rating Expose relay IP in the debug (The source is different from the rendering)

None supplied rbcafe Issue was not triaged


Time to close: 0 Days and 20 hours
Informative

High De-anonymization by visiting specially crafted bookmark.

Information Disclosure qab Issue was not triaged


Time to close: 39 Days and 6 hours
Resolved

High Tor Browser: iframe with `data:` uri has access to parent window

None supplied metnew Issue was not triaged


Time to close: 1 Days and 18 hours
Informative

No rating 16 instances where return value of OpenSSL i2d_RSAPublicKey is discarded -- might lead to use of uninitialized memory

Information Disclosure guido Issue was not triaged


Time to close: 11 Days and 10 hours
Resolved

No rating [tor] pre-emptive defenses, potential vulnerabilities

Violation of Secure Design Principles guido Time to triage: 41 Days and 21 hours


Time to close: 64 Days and 7 hours
Resolved

High Access to local file system using javascript

Violation of Secure Design Principles cuso4 Issue was not triaged


Time to close: 5 Days and 6 hours
Resolved

None Use of uninitialized value in networkstatus_parse_vote_from_string (src/or/routerparse.c:3533)

Memory Corruption - Generic geeknik Time to triage: 15 Days and 17 hours


Time to close: 4 Days and 19 hours
Informative

No rating Use of uninitialized value in memarea_strdup (src/common/memarea.c:369)

Memory Corruption - Generic geeknik Issue was not triaged


Time to close: 19 Days and 11 hours
Informative

Critical Linux TBB SFTP URI allows local IP disclosure

Information Disclosure julianjackson Issue was not triaged


Time to close: 48 Days and 5 hours
Resolved

Low Cross-domain linkability when system time changed in Tor Browser

Privacy Violation xiaoyinl Issue was not triaged


Time to close: 1 Days and 23 hours
Informative

Low Simple CSS line-height identifies platform

Information Disclosure hackerfactor Issue was not triaged


Time to close: 0 Days and 20 hours
Resolved

Low Scrollbar Width permits detecting browser platform

Information Disclosure hackerfactor Issue was not triaged


Time to close: 1 Days and 15 hours
Resolved

No rating Uncloaking hidden services and hidden service users

Man-in-the-Middle hackerfactor Issue was not triaged


Time to close: 0 Days and 0 hours
Informative

No rating Use-after-free during XML transformations (MFSA-2016-27)

Memory Corruption - Generic agarri_fr Issue was not triaged


Time to close: 114 Days and 11 hours
Informative

Low Preferred language option fingerprinting issue in Tor Browser

Information Disclosure xiaoyinl Issue was not triaged


Time to close: 2 Days and 3 hours
Informative

Medium Crashes/Buffer at 0x2C0086,name=PBrowser::Msg_Destroy

Classic Buffer Overflow dhiraj-mishra Issue was not triaged


Time to close: 1 Days and 22 hours
Informative

No rating Overreads/overcopies in torsocks

Memory Corruption - Generic guido Time to triage: 14 Days and 20 hours


Time to close: 130 Days and 20 hours
Resolved

No rating potential memory corruption in or/buffers.c (particularly on 32 bit)

Memory Corruption - Generic guido Issue was not triaged


Time to close: 18 Days and 12 hours
Resolved

No rating [tor] control connection pre-auth DoS (infinite loop) with --enable-bufferevents

Denial of Service guido Time to triage: 0 Days and 11 hours


Time to close: 131 Days and 20 hours
Resolved

No rating [tor] libevent dns OOB read

Memory Corruption - Generic guido Time to triage: 41 Days and 18 hours


Time to close: 69 Days and 7 hours
Resolved

No rating Heap corruption via memarea.c

Memory Corruption - Generic guido Issue was not triaged


Time to close: 12 Days and 0 hours
Resolved