In Tor prior to 0.2.5.16, 0.2.6 up to and including 0.2.8 prior to 0.2.8.17, 0.2.9 prior to 0.2.9.14, 0.3.0 prior to 0.3.0.13, and 0.3.1 prior to 0.3.1.9, remote attackers can cause a denial of service (NULL pointer dereference and application crash) against directory authorities via a malformed descriptor, aka TROVE-2017-010.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tor project tor |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |