CVE-2021-34548 Common Vulnerabilities and Exposures

Upstream information

CVE-2021-34548 at MITRE

Description

An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-003. An attacker can forge RELAY_END or RELAY_RESOLVED to bypass the intended access control for ending a stream.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

SUSE Bugzilla entry: 1187322 [NEW]

SUSE Security Advisories:

openSUSE-SU-2021:0926-1, published Sat Jun 26 00:39:43 2021
openSUSE-SU-2021:0941-1, published Wed Jun 30 15:39:46 2021

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Package Hub 15 SP2	`tor >= 0.4.5.9-bp152.2.12.1`	Patchnames: openSUSE-2021-941
SUSE Package Hub 15 SP3	`tor >= 0.4.5.9-bp153.2.3.1`	Patchnames: openSUSE-2021-989
openSUSE Leap 15.2	`tor >= 0.4.5.9-lp152.2.12.1`	Patchnames: openSUSE-2021-926
openSUSE Leap 15.3	`tor >= 0.4.5.9-bp153.2.3.1`	Patchnames: openSUSE-2021-989
openSUSE Tumbleweed	`tor >= 0.4.6.7-2.2`	Patchnames: openSUSE-Tumbleweed-2024-11469

SUSE Timeline for this CVE

CVE page created: Mon Jun 14 22:42:31 2021
CVE page last modified: Mon Sep 9 13:47:44 2024