Tor: Multiple vulnerabilities

Tor: Multiple vulnerabilities Multiple vulnerabilities were found in Tor, the worst of which could allow remote attackers to cause a Denial of Service condition. tor 2020-03-25 2020-03-25 713238 remote 0.4.1.9 0.4.2.7 0.4.2.7

Tor is an implementation of second generation Onion Routing, a connection-oriented anonymizing communication service.

Multiple vulnerabilities have been discovered in Tor, and tor. Please review the CVE identifiers referenced below for details.

A remote attacker could possibly cause a Denial of Service condition.

There is no known workaround at this time.

All Tor 0.4.1.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-vpn/tor-0.4.1.9"

All Tor 0.4.2.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=net-vpn/tor-0.4.2.7"

CVE-2020-10592 CVE-2020-10593 whissi whissi