onion project onion vulnerabilities and exploits

(subscribe to this query)

A vulnerability was found in davidmoreno onion. It has been rated as problematic. Affected by this issue is the function onion_response_flush of the file src/onion/response.c of the component Log Handler. The manipulation leads to allocation of resources. The name of the patch is...

Mozilla Firefox -Onion Project Onion

This affects all versions of package onion-oled-js. If attacker-controlled user input is given to the scroll function, it is possible for an malicious user to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization.

Onion-oled-js Project Onion-oled-js

Tor prior to 0.2.8.12 might allow remote malicious users to cause a denial of service (client crash) via a crafted hidden service descriptor.

Torproject Tor Opensuse Project Leap 42.1 Debian Debian Linux 8.0 Fedoraproject Fedora 25 Fedoraproject Fedora 24 Debian Debian Linux 9.0 Opensuse Leap 42.2 Opensuse Opensuse 13.2

In Tor prior to 0.2.5.16, 0.2.6 up to and including 0.2.8 prior to 0.2.8.17, 0.2.9 prior to 0.2.9.14, 0.3.0 prior to 0.3.0.13, and 0.3.1 prior to 0.3.1.9, there is a use-after-free in onion service v2 during intro-point expiration because the expiring list is mismanaged in certai...

Tor Project Tor Debian Debian Linux 8.0 Debian Debian Linux 9.0

In Tor prior to 0.2.5.16, 0.2.6 up to and including 0.2.8 prior to 0.2.8.17, 0.2.9 prior to 0.2.9.14, 0.3.0 prior to 0.3.0.13, and 0.3.1 prior to 0.3.1.9, the replay-cache protection mechanism is ineffective for v2 onion services, aka TROVE-2017-009. An attacker can send many INT...

Tor Project Tor Debian Debian Linux 8.0 Debian Debian Linux 9.0

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook