openSUSE-SU-2021:1513-1

Опубликовано: 29 нояб. 2021

Источник: suse-cvrf

Описание

Security update for tor

This update for tor fixes the following issues:

tor 0.4.6.8:

Improving reporting of general overload state for DNS timeout errors by relays
Regenerate fallback directories for October 2021
Bug fixes for onion services
CVE-2021-22929: do not log v2 onion services access attempt warnings on disk excessively (TROVE-2021-008, boo#1192658)

Список пакетов

SUSE Package Hub 15 SP3

tor-0.4.6.8-bp153.2.9.1

openSUSE Leap 15.2

tor-0.4.6.8-bp153.2.9.1

openSUSE Leap 15.3

tor-0.4.6.8-bp153.2.9.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/ZELBVBNTOTNRG5IP3NQWA756AE37TH5Y/
E-Mail link for openSUSE-SU-2021:1513-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1192658
SUSE Bug 1192658
https://www.suse.com/security/cve/CVE-2021-22929/
SUSE CVE CVE-2021-22929 page

Описание

An information disclosure exists in Brave Browser Desktop prior to version 1.28.62, where logged warning messages that included timestamps of connections to V2 onion domains in tor.log.

Затронутые продукты

SUSE Package Hub 15 SP3:tor-0.4.6.8-bp153.2.9.1

openSUSE Leap 15.2:tor-0.4.6.8-bp153.2.9.1

openSUSE Leap 15.3:tor-0.4.6.8-bp153.2.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-22929.html
CVE-2021-22929
https://bugzilla.suse.com/1192658
SUSE Bug 1192658

openSUSE-SU-2021:1513-1

Описание

Список пакетов

SUSE Package Hub 15 SP3

openSUSE Leap 15.2

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2021-22929

Описание

Затронутые продукты

Ссылки