... | ... | @@ -51,8 +51,8 @@ release the patch once we believe it works. |
|
|
| TROVE-2021-007 | tor#40446 | High | 0.2.6.1-alpha | 0.3.5.16, 0.4.5.10, 0.4.6.7 | Batch/singleton crasher in ed25519-batch code | CVE-2021-38385
|
|
|
| TROVE-2021-008 | tor#40474 | Low | 0.4.5.8 | 0.4.5.11, 0.4.6.8, 0.4.7.2-alpha | v2 onion service metadata leak on disk | CVE-2021-22929
|
|
|
| TROVE-2021-009 | tor#40538, tor#40539, tor#40674 | Medium | 0.2.2.1-alpha | 0.4.5.15, 0.4.7.11 | DNS cache oracle |
|
|
|
| TROVE-2022-001 | tor#40626 | High | TBD |
|
|
|
| TROVE-2022-002 | tor#40730 | Medium | TBD | | | CVE-2023-23589
|
|
|
| TROVE-2022-001 | tor#40626 | High | 0.4.7.5-alpha | 0.4.7.8 | RTT estimatation bug enables DoS |
|
|
|
| TROVE-2022-002 | tor#40730 | Medium | 0.3.5.1-alpha | 0.4.5.16, 0.4.7.13 | SafeSocks option allows unsafe SOCKS | CVE-2023-23589
|
|
|
|
|
|
Remember: please get CVE-Ids for everything of severity Medium or higher. To get a CVE-Id, visit https://cveform.mitre.org/ .
|
|
|
|
... | ... | |