[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?
From: Justaguy <justaguy@xxxxxxxxxx>
Date: Tue, 06 Jan 2015 21:57:39 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 Jan 2015 15:58:07 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1420577872; bh=nqzSCL3iCrQMuoU/YmSdC2rakU372qY5kt+lz21+5IU=; h=Date:From:To:Subject:References:In-Reply-To:From; b=CuKJhs/J5IEOP+eMOvYvOGzcoLluM1aE7DvfO/u+3vfJjDSWMqnZynSEbJz1Y5Nau KGuiJu2EXma4Vbr1rwVoHx31nZZFdu7XBq4EcpwcvIYxv37KzjXDr+T0PzbdPBCLpV s7vqx0H6BSciF/+Sc8zSuOa1ODnJTcfrbLFbVWVY=
In-reply-to: <54AC4A8F.9040401@xxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <54AC4A8F.9040401@xxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Icedove/31.3.0

Already answered yesterday.
https://lists.torproject.org/pipermail/tor-talk/2015-January/036379.html

On 01/06/2015 09:50 PM, Nikolas Raiser wrote:
> Hi folks,
>
> can anyone tell me if Tor, since it uses libevent, is affected by this
> vulnerability "Advisory: integer overflow in evbuffers for Libevent <=
> 1.4.14b,2.0.21,2.1.4-alpha [CVE-2014-6272]"
> http://archives.seul.org/libevent/users/Jan-2015/msg00010.html .
> Thanks a lot in advance!
> Yours,
> Nick
>

-- 
PGP fingerprint: 8516 5FFC 011A 6465 D042 6AC1 D719 1F41 B7CE EDFF
OTR fingerprint OFTC: FF6D1AC2 13F38B15 EDB21522 D3530A6F 6EE01996
OTR fingerprint freenode: 293FAFD3 1155A465 C5B77015 B65E8AEC 63A1AF21
Full PGP public key: https://justaguy.pw

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?
  - From: Nikolas Raiser

Prev by Author: Re: [tor-talk] Fox News bans my Tor Browser
Next by Author: [tor-talk] Promote Tor and Hidden Services as an anti-corruption tool for law enforcement agencies and others
Previous by thread: [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?
Next by thread: Re: [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?
Index(es):
- Author
- Thread