[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Libevent vulnerability CVE-2014-6272 - Tor affected?



On 2015-01-06 12:50, Nikolas Raiser wrote:
Hi folks,

can anyone tell me if Tor, since it uses libevent, is affected by this vulnerability "Advisory: integer overflow in evbuffers for Libevent <= 1.4.14b,2.0.21,2.1.4-alpha [CVE-2014-6272]" http://archives.seul.org/libevent/users/Jan-2015/msg00010.html .

Check the list archives for CVE-2014-6272. "The answer is: this does not affect Tor."

--
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren


--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk