openSUSE-SU-2018:0614-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2018:0614-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/openSUSE-SU-2018:0614-1
Related
Published
2018-03-06T19:19:46Z
Modified
2018-03-06T19:19:46Z
Summary
Security update for tor
Details

This update for tor to version 0.3.2.10 fixes security issues and bugs.

The following vulnerabilities were fixed:

  • CVE-2018-0490: remote crash vulnerability against directory authorities (boo#1083845, TROVE-2018-001)
  • CVE-2018-0491: remote relay crash (boo#1083846, TROVE-2018-002)

This new upstream stable version also contains a new system for improved resistance to DoS attacks against relays and various other bug fixes.

References

Affected packages

SUSE:Package Hub 12 / tor

Package

Name
tor
Purl
pkg:rpm/suse/tor&distro=SUSE%20Package%20Hub%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.3.2.10-14.1

Ecosystem specific 

{
    "binaries": [
        {
            "tor": "0.3.2.10-14.1"
        }
    ]
}