CVE-2018-0491

Summary

A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.

Affected Software

VendorProductVersion RangeStatus
n/aTorToraffected

Weaknesses

  • use-after-free

ADP Enrichment

CVE Program Container

Additional References

References