Lucene search
RedhatCVELIST:CVE-2012-3518HistoryAug 26, 2012 - 1:00 a.m.
CVE-2012-3518
2012-08-2601:00:00
redhat
www.cve.org
5
The networkstatus_parse_vote_from_string function in routerparse.c in Tor before 0.2.2.38 does not properly handle an invalid flavor name, which allows remote attackers to cause a denial of service (out-of-bounds read and daemon crash) via a crafted (1) vote document or (2) consensus document.
References
lists.opensuse.org/opensuse-updates/2012-08/msg00048.html
openwall.com/lists/oss-security/2012/08/21/6
secunia.com/advisories/50583
security.gentoo.org/glsa/glsa-201301-03.xml
gitweb.torproject.org/tor.git/commit/55f635745afacefffdaafc72cc176ca7ab817546
gitweb.torproject.org/tor.git/commit/57e35ad3d91724882c345ac709666a551a977f0f
lists.torproject.org/pipermail/tor-announce/2012-August/000086.html
trac.torproject.org/projects/tor/ticket/6530
Related
nvd
nvd
CVE-2012-3518
2012-08-26 03:17:44
prion
prion
Out-of-bounds
2012-08-26 03:17:00
ubuntucve
ubuntucve
CVE-2012-3518
2012-08-26 00:00:00
cve
cve
CVE-2012-3518
2012-08-26 03:17:44
debiancve
debiancve
CVE-2012-3518
2012-08-26 03:17:44
nessus
nessus
Debian DSA-2548-1 : tor - several vulnerabilities
2012-09-14 00:00:00
openSUSE Security Update : tor (openSUSE-SU-2012:1068-1)
2014-06-13 00:00:00
GLSA-201301-03 : Tor: Multiple vulnerabilities
2013-01-09 00:00:00
securityvulns
securityvulns
tor security vulnerabilities
2012-09-18 00:00:00
[SECURITY] [DSA 2548-1] tor security update
2012-09-18 00:00:00
openvas
openvas
Debian Security Advisory DSA 2548-1 (tor)
2012-09-15 00:00:00
Debian: Security Advisory (DSA-2548-1)
2012-09-15 00:00:00
Gentoo Security Advisory GLSA 201301-03
2015-09-29 00:00:00
osv
osv
tor - several
2012-09-13 00:00:00
tor-0.2.8.11-1.1 on GA media
2024-06-15 00:00:00
debian
debian
[SECURITY] [DSA 2548-1] tor security update
2012-09-13 19:23:11
gentoo
gentoo
Tor: Multiple vulnerabilities
2013-01-08 00:00:00