An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory access, and a client crash, via a crafted onion service descriptor
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | tor | < 0.4.5.9-1 | tor_0.4.5.9-1_all.deb |
Debian | 11 | all | tor | < 0.4.5.9-1 | tor_0.4.5.9-1_all.deb |
Debian | 10 | all | tor | < 0.3.5.15-1 | tor_0.3.5.15-1_all.deb |
Debian | 999 | all | tor | < 0.4.5.9-1 | tor_0.4.5.9-1_all.deb |
Debian | 13 | all | tor | < 0.4.5.9-1 | tor_0.4.5.9-1_all.deb |