CVE-2011-0490

Published: Jan 19, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha makes calls to Libevent within Libevent log handlers, which might allow remote attackers to cause a denial of service (daemon crash) via vectors that trigger certain log messages.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[or-announce] 20110117 Tor 0.2.1.29 is released (security patches)

mailing-list

x_refsource_MLIST

https://gitweb.torproject.org/tor.git/blob/refs/heads/release-0.2.2:/ChangeLog

x_refsource_CONFIRM

http://blog.torproject.org/blog/tor-02129-released-security-patches

x_refsource_CONFIRM

tor-libevent-dos(64889)

vdb-entry

x_refsource_XF

https://trac.torproject.org/projects/tor/ticket/2190

x_refsource_CONFIRM

45953

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-0490

Description

Affected Products

References