Candidate: CVE-2011-4895
PublicDate: 2011-12-23 03:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4895
 https://blog.torproject.org/blog/tor-02234-released-security-patches
Description:
 Tor before 0.2.2.34, when configured as a bridge, sets up circuits through
 a process different from the process used by a client, which makes it
 easier for remote attackers to enumerate bridges by observing circuit
 building.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_tor:
upstream_tor: not-affected (0.2.2.35-1)
hardy_tor: ignored (reached end-of-life)
lucid_tor: DNE
maverick_tor: DNE
natty_tor: ignored (reached end-of-life)
oneiric_tor: ignored (reached end-of-life)
precise_tor: not-affected (0.2.2.35-1)
quantal_tor: not-affected (0.2.2.35-1)
raring_tor: not-affected (0.2.2.35-1)
devel_tor: not-affected (0.2.2.35-1)