Your submission was sent successfully! Close

CVE-2011-1924

Published: 14 June 2011

Buffer overflow in the policy_summarize function in or/policies.c in Tor before 0.2.1.30 allows remote attackers to cause a denial of service (directory authority crash) via a crafted policy that triggers creation of a long port list.

Priority

Low

Status

Package Release Status
tor
Launchpad, Ubuntu, Debian
Upstream
Released (0.2.1.30)
Patches:
Upstream: https://gitweb.torproject.org/tor.git/commit/43414eb98821d3b5c6c65181d7545ce938f82c8e