Your submission was sent successfully! Close

CVE-2012-3518

Published: 26 August 2012

The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted (1) vote document or (2) consensus document.

Priority

Low

Status

Package Release Status
tor
Launchpad, Ubuntu, Debian
Upstream
Released (0.2.2.38)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (0.2.3.22-rc-1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (0.2.3.22-rc-1)
Patches:
Upstream: https://gitweb.torproject.org/tor.git/commitdiff/57e35ad3d91724882c345ac709666a551a977f0f
Upstream: https://gitweb.torproject.org/tor.git/commitdiff/55f635745afacefffdaafc72cc176ca7ab817546