Tor before 0.3.5.10, 0.4.x before 0.4.1.9, and 0.4.2.x before 0.4.2.7 allows remote attackers to cause a Denial of Service (CPU consumption), aka TROVE-2020-002.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Tor | Torproject | 0.3.5 (including) | 0.3.5.10 (excluding) |
Tor | Torproject | 0.4.1.0 (excluding) | 0.4.1.9 (excluding) |
Tor | Torproject | 0.4.2.0 (excluding) | 0.4.2.7 (including) |
Tor | Ubuntu | eoan | * |
Tor | Ubuntu | trusty | * |
Tor | Ubuntu | upstream | * |
Tor | Ubuntu | xenial | * |