vulnerability
FreeBSD: VID-0B9F4B5E-5D82-11E7-85DF-14DAE9D5A9D2 (CVE-2017-0377): tor -- security regression
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Jun 29, 2017 | Jul 1, 2017 | May 7, 2019 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Jun 29, 2017
Added
Jul 1, 2017
Modified
May 7, 2019
Description
Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families.
Solutions
freebsd-upgrade-package-torfreebsd-upgrade-package-tor-devel
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.