4 matches found
EUVD-2026-28306
Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007...
CVE-2026-44601
Tor could crash a client when facing circuit queue memory pressure due to a double close of a circuit (TROVE-2026-009). Affected software: Tor prior to version 0.4.9.7. Root cause: circuit handling under memory pressure allows a double close, causing a denial of service on affected clients. Impac...
CVE-2026-44599
Technical details about CVE-2026-44599 (affected software, vulnerable component, impact, or remediation) are not publicly available in the provided documents. Monitor for updates.
PT-2026-38326
Name of the Vulnerable Software and Affected Versions Tor versions prior to 0.4.9.7 Description Tor mishandles the accounting of the conflux out-of-order queue during the process of clearing a queue. Recommendations Update to version 0.4.9.7 or later...