CVE-2012-4922
published 2012-09-14CVE-2012-4922: The tor_timegm function in common/util.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.22-rc, does not properly validate time values, which allows remote…
medium5CVSS 3.1
AVNACLAuNCNINAP
The tor_timegm function in common/util.c in Tor before 0.2.2.39, and 0.2.3.x before 0.2.3.22-rc, does not properly validate time values, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a malformed directory object, a different vulnerability than CVE-2012-4419.
Affected
86 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tor | < tor 0.2.3.22-rc-1 (bookworm) | tor 0.2.3.22-rc-1 (bookworm) |
| torproject | tor | <= 0.2.2.38 | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
| torproject | tor | — | — |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM