CVE-2011-1924 — Improper Restriction of Operations within the Bounds of a Memory Buffer in TOR

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer6 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

1.6%

top 18.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Torproject TOR TOR

Timeline

PublishedJun 14

Latest updateMay 17

Description

Buffer overflow in the policy_summarize function in or/policies.c in Tor before 0.2.1.30 allows remote attackers to cause a denial of service (directory authority crash) via a crafted policy that triggers creation of a long port list.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶Debiantorproject/tor< 0.2.1.30-1+3

▶NVDtor/tor0.2.1.29+203

Patches

Patch: bugzilla.redhat.com ↗Patch: gitweb.torproject.org ↗Patch: lists.torproject.org ↗

🔴Vulnerability Details

GHSA

GHSA-f3pm-2c82-x85g: Buffer overflow in the policy_summarize function in or/policies↗2022-05-17

▶

OSV

CVE-2011-1924: Buffer overflow in the policy_summarize function in or/policies↗2011-06-14

▶

CVEList

CVE-2011-1924: Buffer overflow in the policy_summarize function in or/policies↗2011-06-14

▶

📋Vendor Advisories

Debian

CVE-2011-1924: tor - Buffer overflow in the policy_summarize function in or/policies.c in Tor before ...↗2011

▶

💬Community

Bugzilla

CVE-2011-1924 tor: remote DoS fixed in 0.2.1.30↗2011-05-16

▶