Описание
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
Ссылки
- Vendor Advisory
- Issue TrackingMitigationVendor Advisory
- Issue TrackingPatchVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
- Vendor Advisory
- Issue TrackingMitigationVendor Advisory
- Issue TrackingPatchVendor Advisory
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
EPSS
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. ...
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
EPSS
7.5 High
CVSS3
5 Medium
CVSS2