This bug affects and crashes semi-recent 32bit and 64bit Tor Browser installers on Windows 10/11 and maybe even Windows 8/8.1 when Bottom-Up Address Space Layout Randomization (ASLR) is enabled. Bottom-Up ASLR is also known as Mandatory ASLR. It is a security feature that is not automatically enabled in Windows and can be enabled through the following registry entry:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\kernel] "MitigationOptions"=hex:00,01,01,00,00,00,00,00,00,00,00,00,00,00,00,00
When Bottom-Up ASLR is enabled, Tor Browser installers just crash. This bug is 100% reproducable. Bottom-Up ASLR can crash portable apps and per-application settings are possible with tools like GFlagsX, but I think it is best to just compile Tor Browser installer to be fully compatible with Bottom-Up ASLR.
Tor Browser itself is not affected. Only Tor Browser installers are affected. I think all Tor Browser installers compiled after Tor Browser installer for Tor Browser version 9 and later are affected, but I am not sure.