From 623ee73d661e5ed8475cb264511f683407d87365 Mon Sep 17 00:00:00 2001 From: V3n3RiX Date: Sun, 12 Apr 2020 03:41:30 +0100 Subject: gentoo Easter resync : 12.04.2020 --- metadata/glsa/glsa-202003-50.xml | 58 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 58 insertions(+) create mode 100644 metadata/glsa/glsa-202003-50.xml (limited to 'metadata/glsa/glsa-202003-50.xml') diff --git a/metadata/glsa/glsa-202003-50.xml b/metadata/glsa/glsa-202003-50.xml new file mode 100644 index 000000000000..36ab084c78c9 --- /dev/null +++ b/metadata/glsa/glsa-202003-50.xml @@ -0,0 +1,58 @@ + + + + Tor: Multiple vulnerabilities + Multiple vulnerabilities were found in Tor, the worst of which + could allow remote attackers to cause a Denial of Service condition. + + tor + 2020-03-25 + 2020-03-25 + 713238 + remote + + + 0.4.1.9 + 0.4.2.7 + 0.4.2.7 + + + +

Tor is an implementation of second generation Onion Routing, a + connection-oriented anonymizing communication service. +

+ + +

Multiple vulnerabilities have been discovered in Tor, and tor. Please + review the CVE identifiers referenced below for details. +

+ + +

A remote attacker could possibly cause a Denial of Service condition.

+ + +

There is no known workaround at this time.

+ + +

All Tor 0.4.1.x users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=net-vpn/tor-0.4.1.9" + + +

All Tor 0.4.2.x users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=net-vpn/tor-0.4.2.7" + + + + + CVE-2020-10592 + CVE-2020-10593 + + whissi + whissi + -- cgit v1.2.3