CVE-2021-34550

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory access, and a client crash, via a crafted onion service descriptor
References
Configurations

Configuration 1

cpe:2.3:a:torproject:tor:*:*:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:*:*:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:*:*:*:*:*:*:*:*
cpe:2.3:a:torproject:tor:*:*:*:*:*:*:*:*

Information

Published : 2021-06-29 12:15

Updated : 2021-09-20 06:53


NVD link : CVE-2021-34550

Mitre link : CVE-2021-34550

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer