Create an account

Subscribe to LWN

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

tor: denial of service

Package(s):

tor

CVE #(s):

CVE-2012-4419

Created:

September 14, 2012

Updated:

February 4, 2013

Description:

From the Debian advisory:

By providing specially crafted date strings to a victim tor instance, an attacker can cause it to run into an assertion and shut down

Alerts:

Debian	DSA-2548-1	2012-09-13
Mageia	MGASA-2012-0276	2012-09-30
openSUSE	openSUSE-SU-2012:1278-1	2012-10-02
Gentoo	201301-03	2013-01-08
Fedora	FEDORA-2012-14650	2013-02-03
Mandriva	MDVSA-2013:132	2013-04-10

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds