[Secure-testing-team] Bug#864424: tor onion services: remote assertion failure
Peter Palfrader
weasel at debian.org
Thu Jun 8 13:16:27 UTC 2017
Package: tor
Version: 0.2.2.1-alpha-1
Severity: serious
Tags: security
There is a remotely triggerable assertion failure in Tor onion services.
This is a DoS issue for any tor instance providing an onion service.
Tor in all of Debian's suites is affected.
It's tracked as TROVE-2017-005, https://bugs.torproject.org/22494, CVE-2017-0376.
[Additionally, Tor in experimental is affected by TROVE-2017-004,
https://bugs.torproject.org/22493 CVE-2017-0375.]
--
| .''`. ** Debian **
Peter Palfrader | : :' : The universal
https://www.palfrader.org/ | `. `' Operating System
| `- https://www.debian.org/
More information about the Secure-testing-team
mailing list