Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-2768HistoryDec 23, 2011 - 3:59 a.m.
CVE-2011-2768
2011-12-2303:59:21
Debian Security Bug Tracker
security-tracker.debian.org
13
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.001
Percentile
42.9%
Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of an outgoing OR connection, which allows remote relays to bypass intended anonymity properties by reading this chain and then determining the set of entry guards that the client or bridge had selected.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 11 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 999 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
| Debian | 13 | all | tor | < 0.2.2.34-1 | tor_0.2.2.34-1_all.deb |
Related
nvd
nvd
CVE-2011-2768
2011-12-23 03:59:21
ubuntucve
ubuntucve
CVE-2011-2768
2011-12-23 00:00:00
cvelist
cvelist
CVE-2011-2768
2011-12-23 02:00:00
prion
prion
Design/Logic Flaw
2011-12-23 03:59:00
cve
cve
CVE-2011-2768
2011-12-23 03:59:21
openvas
openvas
Debian Security Advisory DSA 2331-1 (tor)
2012-02-11 00:00:00
Fedora Update for tor FEDORA-2011-15117
2011-11-08 00:00:00
Fedora Update for tor FEDORA-2011-15117
2011-11-08 00:00:00
debian
debian
[SECURITY] [DSA 2331-1] tor security update
2011-10-28 16:17:06
threatpost
threatpost
New Tor Release Fixes De-Anonymization Attack
2011-10-28 14:58:00
fedora
fedora
[SECURITY] Fedora 15 Update: tor-0.2.1.31-1500.fc15
2011-11-04 20:27:34
[SECURITY] Fedora 16 Update: tor-0.2.2.34-1600.fc16
2011-11-10 17:25:40
[SECURITY] Fedora 16 Update: tor-0.2.2.35-1601.fc16
2012-01-11 06:15:50
osv
osv
tor - several
2011-10-28 00:00:00
tor-0.2.8.11-1.1 on GA media
2024-06-15 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2331-1] tor security update
2011-10-31 00:00:00
tor information discosure
2011-10-31 00:00:00
nessus
nessus
Fedora 16 : tor-0.2.2.34-1600.fc16 (2011-15208)
2011-11-14 00:00:00
Fedora 15 : tor-0.2.1.31-1500.fc15 (2011-15117)
2011-11-07 00:00:00
Fedora 16 : tor-0.2.2.35-1601.fc16 (2011-17248)
2012-01-11 00:00:00
gentoo
gentoo
Tor: Multiple vulnerabilities
2012-01-23 00:00:00
thn
thn
Tor Vulnerable to Remote arbitrary code Execution
2012-01-23 20:38:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.001
Percentile
42.9%
Related for DEBIANCVE:CVE-2011-2768