routerlist.c in Tor prior to 0.2.2.38 uses a different amount of time for relay-list iteration depending on which relay is chosen, which might allow remote malicious users to obtain sensitive information about relay selection via a timing side-channel attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tor tor |