Version 12 (modified by nickm, 4 years ago) (diff)


TROVE: Tor Registry Of Vulnerabilities and Exposures

This page is an experimental registry of Tor software security problems, as we find them. We assign each one a number based on the year, the month, and an index.

TROVE ID Ticket Synopsis CVE Id extra
TROVE-2016-10-001 #20384 buf_t buffer read beyond end CVE-2016-8860 (Debian: tracker DSA-3694 DLA-663)
TROVE-2016-12-002 #21018 parse HS descs one byte past end CVE-2016-1254 (Debian: tracker)
TROVE-2017-001 #21278