Lucene search
K

4 matches found

Mageia
Mageia
added 2017/09/21 1:43 p.m.33 views

Updated tor packages fix security vulnerability

Due to the code that reports an error during the construction of an introduction point circuit, it is possible that some hidden services will sometimes write sensitive information into their logs if the SafeLogging option is disabled. Note that SafeLogging is enabled by default CVE-2017-0380...

5.9CVSS1.2AI score0.01541EPSS
Exploits0References3
OSV
OSV
added 2017/09/18 4:29 p.m.1 views

DEBIAN-CVE-2017-0380

The rendserviceintroestablished function in or/rendservice.c in Tor before 0.2.8.15, 0.2.9.x before 0.2.9.12, 0.3.0.x before 0.3.0.11, 0.3.1.x before 0.3.1.7, and 0.3.2.x before 0.3.2.1-alpha, when SafeLogging is disabled, allows attackers to obtain sensitive information by leveraging access to t...

5.9CVSS6.5AI score0.01541EPSS
Exploits0References1
OSV
OSV
added 2017/09/18 4:29 p.m.4 views

UBUNTU-CVE-2017-0380

The rendserviceintroestablished function in or/rendservice.c in Tor before 0.2.8.15, 0.2.9.x before 0.2.9.12, 0.3.0.x before 0.3.0.11, 0.3.1.x before 0.3.1.7, and 0.3.2.x before 0.3.2.1-alpha, when SafeLogging is disabled, allows attackers to obtain sensitive information by leveraging access to t...

5.9CVSS6.6AI score0.01541EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/04/08 12:0 a.m.29 views

Debian DSA-3216-1 : tor - security update

Several vulnerabilities have been discovered in Tor, a connection-based low-latency anonymous communication system : - CVE-2015-2928 'disgleirio' discovered that a malicious client could trigger an assertion failure in a Tor instance providing a hidden service, thus rendering the service...

7.5CVSS7.5AI score0.01384EPSS
Exploits0References6
Rows per page
Query Builder