Bug ID | 1205307 |
---|---|
Summary | VUL-1: tor: 0.4.7.11 additional defenses against a network wide DoS (TROVE-2021-009) |
Classification | openSUSE |
Product | openSUSE Distribution |
Version | Leap 15.4 |
Hardware | Other |
OS | Other |
Status | NEW |
Severity | Minor |
Priority | P5 - None |
Component | Security |
Assignee | Andreas.Stieger@gmx.de |
Reporter | Andreas.Stieger@gmx.de |
QA Contact | security-team@suse.de |
CC | bwiedemann@suse.com |
Found By | --- |
Blocker | --- |
https://gitlab.torproject.org/tpo/core/tor/-/raw/release-0.4.7/ReleaseNotes fixed in tor 0.4.7.11 [...] This version contains several major fixes aimed at helping defend against network denial of service. [...] We strongly recommend to upgrade to this version especially for Exit relays in order to help the network defend against this ongoing DDoS. [...] o Major bugfixes (relay): - Improve security of our DNS cache by randomly clipping the TTL value. TROVE-2021-009.