CVE-2011-0491
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2011-0491
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2011-0491.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2011-0491
- Downstream
- Published
- 2011-01-19T12:00:20Z
- Modified
- 2025-08-09T19:01:27Z
- Summary
- [none]
- Details
-
The tor_realloc function in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not validate a certain size value during memory allocation, which might allow remote attackers to cause a denial of service (daemon crash) via unspecified vectors, related to "underflow errors."
- References
-
- http://blog.torproject.org/blog/tor-02129-released-security-patches
- http://archives.seul.org/or/announce/Jan-2011/msg00000.html
- https://gitweb.torproject.org/tor.git/blob/refs/heads/release-0.2.2:/ChangeLog
- http://www.securityfocus.com/bid/45953
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64888
- https://trac.torproject.org/projects/tor/ticket/2324