Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-2768HistoryDec 23, 2011 - 3:59 a.m.
CVE-2011-2768
2011-12-2303:59:21
Debian Security Bug Tracker
security-tracker.debian.org
11
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
43.0%
Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by reading this chain and then determining the set of entry guards that the client or bridge had selected.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 11 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 999 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 13 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
Related
nvd
nvd
CVE-2011-2768
2011-12-23 03:59:21
ubuntucve
ubuntucve
CVE-2011-2768
2011-12-23 00:00:00
cvelist
cvelist
CVE-2011-2768
2011-12-23 02:00:00
cve
cve
CVE-2011-2768
2011-12-23 03:59:21
prion
prion
Design/Logic Flaw
2011-12-23 03:59:00
securityvulns
securityvulns
[SECURITY] [DSA 2331-1] tor security update
2011-10-31 00:00:00
tor information discosure
2011-10-31 00:00:00
openvas
openvas
Fedora Update for tor FEDORA-2011-15208
2012-03-19 00:00:00
Debian Security Advisory DSA 2331-1 (tor)
2012-02-11 00:00:00
Fedora Update for tor FEDORA-2011-15117
2011-11-08 00:00:00
debian
debian
[SECURITY] [DSA 2331-1] tor security update
2011-10-28 16:17:06
threatpost
threatpost
New Tor Release Fixes De-Anonymization Attack
2011-10-28 14:58:00
fedora
fedora
[SECURITY] Fedora 15 Update: tor-0.2.1.31-1500.fc15
2011-11-04 20:27:34
[SECURITY] Fedora 16 Update: tor-0.2.2.34-1600.fc16
2011-11-10 17:25:40
[SECURITY] Fedora 16 Update: tor-0.2.2.35-1601.fc16
2012-01-11 06:15:50
osv
osv
tor - several
2011-10-28 00:00:00
nessus
nessus
Debian DSA-2331-1 : tor - several vulnerabilities
2011-10-31 00:00:00
Fedora 16 : tor-0.2.2.34-1600.fc16 (2011-15208)
2011-11-14 00:00:00
Fedora 15 : tor-0.2.1.31-1500.fc15 (2011-15117)
2011-11-07 00:00:00
thn
thn
Tor Vulnerable to Remote arbitrary code Execution
2012-01-23 20:38:00
gentoo
gentoo
Tor: Multiple vulnerabilities
2012-01-23 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.001 Low
EPSS
Percentile
43.0%
Related for DEBIANCVE:CVE-2011-2768