Showing 1 - 3 of 3

CVE-2021-34550

Status Candidate

Overview

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory access, and a client crash, via a crafted onion service descriptor

Related Files

Gentoo Linux Security Advisory 202107-25: Posted Jul 12, 2021; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202107-25 - Multiple vulnerabilities have been found in Tor, the worst of which could result in a Denial of Service condition. Versions less than 0.4.6.5 are affected.; tags | advisory, denial of service, vulnerability; systems | linux, gentoo; advisories | CVE-2021-28089, CVE-2021-28090, CVE-2021-34548, CVE-2021-34549, CVE-2021-34550; SHA-256 | 7692df39f84fe213dae815465dde76f6045ee1bf33730aeb443dbfd43e98494e; Download | Favorite | View

Debian Security Advisory 4932-1: Posted Jun 28, 2021; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4932-1 - Multiple security vulnerabilities were discovered in Tor, a connection-based low-latency anonymous communication system, which could result in denial of service or spoofing.; tags | advisory, denial of service, spoof, vulnerability; systems | linux, debian; advisories | CVE-2021-34548, CVE-2021-34549, CVE-2021-34550; SHA-256 | 18890b4acb8c50dc00ffb546ccde2e0a2dc9cfcb68bc471f1cfc92b5084e2ddd; Download | Favorite | View

TOR Virtual Network Tunneling Tool 0.4.6.5: Posted Jun 14, 2021; Authored by Roger Dingledine | Site tor.eff.org; Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs). This is the source code release.; Changes: Tor 0.4.6.5 is the first stable release in its series. The 0.4.6.x series includes numerous features and bugfixes, including a significant improvement to the circuit timeout algorithm that should improve observed client performance, and a way for relays to report when they are overloaded. This release also includes security fixes for several security issues, including a denial-of-service attack against onion service clients, and another denial-of-service attack against relays. Everybody should upgrade to one of 0.3.5.15, 0.4.4.9, 0.4.5.9, or 0.4.6.5.; tags | tool, remote, local, peer2peer; systems | unix; advisories | CVE-2021-34548, CVE-2021-34550; SHA-256 | 7b6d354e0d9791eace4b51e92211909308297b7aa257993937163d7ee0694cf9; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 210 files
Ubuntu 64 files
Debian 27 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2021-34550

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems