
http://bugzilla.opensuse.org/show_bug.cgi?id=1205307 Bug ID: 1205307 Summary: VUL-1: tor: 0.4.7.11 additional defenses against a network wide DoS (TROVE-2021-009) Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.4 Hardware: Other OS: Other Status: NEW Severity: Minor Priority: P5 - None Component: Security Assignee: Andreas.Stieger@gmx.de Reporter: Andreas.Stieger@gmx.de QA Contact: security-team@suse.de CC: bwiedemann@suse.com Found By: --- Blocker: --- https://gitlab.torproject.org/tpo/core/tor/-/raw/release-0.4.7/ReleaseNotes fixed in tor 0.4.7.11 [...] This version contains several major fixes aimed at helping defend against network denial of service. [...] We strongly recommend to upgrade to this version especially for Exit relays in order to help the network defend against this ongoing DDoS. [...] o Major bugfixes (relay): - Improve security of our DNS cache by randomly clipping the TTL value. TROVE-2021-009. -- You are receiving this mail because: You are on the CC list for the bug.