CVE-2011-1924

Published: Jun 14, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Buffer overflow in the policy_summarize function in or/policies.c in Tor before 0.2.1.30 allows remote attackers to cause a denial of service (directory authority crash) via a crafted policy that triggers creation of a long port list.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

43548

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=705194

x_refsource_CONFIRM

44862

third-party-advisory

x_refsource_SECUNIA

46618

vdb-entry

x_refsource_BID

https://gitweb.torproject.org/tor.git/commit/43414eb98821d3b5c6c65181d7545ce938f82c8e

x_refsource_CONFIRM

FEDORA-2011-7972

vendor-advisory

x_refsource_FEDORA

https://bugzilla.redhat.com/show_bug.cgi?id=705192

x_refsource_CONFIRM

[tor-announce] 20110228 Tor 0.2.1.30 is released

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-1924

Description

Affected Products

References