|
|
Subscribe / Log in / New account

tor: denial of service

Package(s):tor CVE #(s):CVE-2015-2688 CVE-2015-2689
Created:March 23, 2015 Updated:April 6, 2015
Description: From the Debian advisory:

Several denial-of-service issues have been discovered in Tor, a connection-based low-latency anonymous communication system.

  • Jowr discovered that very high DNS query load on a relay could trigger an assertion error.

  • A relay could crash with an assertion error if a buffer of exactly the wrong layout was passed to buf_pullup() at exactly the wrong time.

CVEs were not available when this entry was created, and were added later. See the Tor release announcement for details.

Alerts:
Fedora FEDORA-2015-4478 tor 2015-04-05
Fedora FEDORA-2015-4725 tor 2015-04-05
Mandriva MDVSA-2015:189 tor 2015-04-02
Mageia MGASA-2015-0124 tor 2015-04-01
openSUSE openSUSE-SU-2015:0600-1 tor 2015-03-25
Debian-LTS DLA-178-1 tor 2015-03-22
Debian DSA-3203-1 tor 2015-03-22
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds