CVE-2018-0491
Summary
| CVE | CVE-2018-0491 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2018-03-05 15:29:00 UTC |
|---|
| Updated | 2019-03-26 18:52:00 UTC |
|---|
| Description | A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list. |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Application |
Torproject |
Tor |
All |
All |
All |
All |
| Application |
Torproject |
Tor |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| New stable Tor releases, with security fixes and DoS prevention: 0.3.2.10, 0.3.1.10, 0.2.9.15 | Tor Blog |
CONFIRM |
blog.torproject.org |
Vendor Advisory |
| #24700 (sched: With KIST, a channel can be added more than once in the pending list)
– Tor Bug Tracker & Wiki |
CONFIRM |
trac.torproject.org |
Issue Tracking, Mitigation, Vendor Advisory |
| #25117 (Resolve TROVE-2018-002: bug 24700 KIST use-after-free can be remotely triggered)
– Tor Bug Tracker & Wiki |
CONFIRM |
trac.torproject.org |
Issue Tracking, Patch, Vendor Advisory |
| Tor Browser < 0.3.2.10 - Use After Free (PoC) - Linux dos Exploit |
EXPLOIT-DB |
www.exploit-db.com |
Exploit, Third Party Advisory, VDB Entry |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 501257 Alpine Linux Security Update for tor
