Candidate: CVE-2011-1924
PublicDate: 2011-06-14 17:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1924
Description:
 Buffer overflow in the policy_summarize function in or/policies.c in Tor
 before 0.2.1.30 allows remote attackers to cause a denial of service
 (directory authority crash) via a crafted policy that triggers creation of
 a long port list.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_tor:
 upstream: https://gitweb.torproject.org/tor.git/commit/43414eb98821d3b5c6c65181d7545ce938f82c8e
upstream_tor: released (0.2.1.30)
hardy_tor: ignored (reached end-of-life)
lucid_tor: DNE
maverick_tor: DNE
natty_tor: not-affected (0.2.1.30-1)
oneiric_tor: not-affected (0.2.1.30-1build1)
devel_tor: not-affected (0.2.1.30-1build1)