| Bug ID | 1205307 |
|---|---|
| Summary | VUL-1: tor: 0.4.7.11 additional defenses against a network wide DoS (TROVE-2021-009) |
| Classification | openSUSE |
| Product | openSUSE Distribution |
| Version | Leap 15.4 |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Minor |
| Priority | P5 - None |
| Component | Security |
| Assignee | Andreas.Stieger@gmx.de |
| Reporter | Andreas.Stieger@gmx.de |
| QA Contact | security-team@suse.de |
| CC | bwiedemann@suse.com |
| Found By | --- |
| Blocker | --- |
https://gitlab.torproject.org/tpo/core/tor/-/raw/release-0.4.7/ReleaseNotes fixed in tor 0.4.7.11 [...] This version contains several major fixes aimed at helping defend against network denial of service. [...] We strongly recommend to upgrade to this version especially for Exit relays in order to help the network defend against this ongoing DDoS. [...] o Major bugfixes (relay): - Improve security of our DNS cache by randomly clipping the TTL value. TROVE-2021-009.