3 matches found
Tor Denial of Service Vulnerability (CNVD-2018-00232)
Tor is free software that enables anonymous communication. A denial of service vulnerability exists in Tor before 0.2.8.12. An attacker can exploit this vulnerability to cause a denial of service client crash via specially crafted hidden service descriptors...
Updated tor package fixes security vulnerability
It was discovered that Tor, a connection-based low-latency anonymous communication system, may read one byte past a buffer when parsing hidden service descriptors. This issue may enable a hostile hidden service to crash Tor clients depending on hardening options and malloc implementation...
Debian DLA-187-1 : tor security update
Several hidden service related denial of service issues have been discovered in Tor, a connection-based low-latency anonymous communication system. o 'disgleirio' discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the...