Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2012-5573

The connection_edge_process_relay_cell function in or/relay.c in Tor before 0.2.3.25 maintains circuits even if an unexpected SENDME cell arrives, which might allow remote attackers to cause a denial of service (memory consumption or excessive cell reception rate) or bypass intended flow-control restrictions via a RELAY_COMMAND_SENDME command.

See the

CVE page on Mitre.org for more details.

References

MISC: http://secunia.com/adv...
MISC: http://security.gentoo...
MISC: http://openwall.com/li...
MISC: https://bugs.gentoo.or...
MISC: https://bugzilla.redha...
MISC: https://gitweb.torproj...
MISC: https://gitweb.torproj...
MISC: https://trac.torprojec...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2012-5573

Related bugs

References