[Secure-testing-commits] r58200 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Dec 1 22:59:55 UTC 2017
Author: carnil
Date: 2017-12-01 22:59:55 +0000 (Fri, 01 Dec 2017)
New Revision: 58200
Modified:
data/CVE/list
Log:
Add related tor bugs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-01 22:57:09 UTC (rev 58199)
+++ data/CVE/list 2017-12-01 22:59:55 UTC (rev 58200)
@@ -26442,22 +26442,27 @@
CVE-2017-8823 [TROVE-2017-013: Use-after-free in onion service v2]
RESERVED
- tor <unfixed>
+ NOTE: https://bugs.torproject.org/24313
NOTE: https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516
CVE-2017-8822 [TROVE-2017-012: Relays can pick themselves in a circuit path]
RESERVED
- tor <unfixed>
+ NOTE: https://bugs.torproject.org/21534
NOTE: https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516
CVE-2017-8821 [TROVE-2017-011: An attacker can make Tor ask for a password]
RESERVED
- tor <unfixed>
+ NOTE: https://bugs.torproject.org/24246
NOTE: https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516
CVE-2017-8820 [TROVE-2017-010: Remote DoS attack against directory authorities]
RESERVED
- tor <unfixed>
+ NOTE: https://bugs.torproject.org/24245
NOTE: https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516
CVE-2017-8819 [TROVE-2017-009: Replay-cache ineffective for v2 onion services]
RESERVED
- tor <unfixed>
+ NOTE: https://bugs.torproject.org/24244
NOTE: https://blog.torproject.org/new-stable-tor-releases-security-fixes-0319-03013-02914-02817-02516
CVE-2017-8818 (curl and libcurl before 7.57.0 on 32-bit platforms allow attackers to ...)
- curl 7.57.0-1
More information about the Secure-testing-commits
mailing list