FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-13 20:06:50 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
f393b5a7-1535-11ef-8064-c5610a6efffb	Arti -- Security issues related to circuit construction Tor Project reports: When building anonymizing circuits to or from an onion service with 'lite' vanguards (the default) enabled, the circuit manager code would build the circuits with one hop too few. When 'full' vanguards are enabled, some circuits are supposed to be built with an extra hop to minimize the linkability of the guard nodes. In some circumstances, the circuit manager would build circuits with one hop too few, making it easier for an adversary to discover the L2 and L3 guards of the affected clients and services. Discovery 2024-05-14 Entry 2024-05-18 arti < 1.2.3 CVE-2024-35313 https://gitlab.torproject.org/tpo/core/arti/-/issues/1400 CVE-2024-35312 https://gitlab.torproject.org/tpo/core/arti/-/issues/1409

VuXML ID

Description

f393b5a7-1535-11ef-8064-c5610a6efffb

Arti -- Security issues related to circuit construction

Tor Project reports:

When building anonymizing circuits to or from an onion service with 'lite' vanguards (the default) enabled, the circuit manager code would build the circuits with one hop too few.

When 'full' vanguards are enabled, some circuits are supposed to be built with an extra hop to minimize the linkability of the guard nodes. In some circumstances, the circuit manager would build circuits with one hop too few, making it easier for an adversary to discover the L2 and L3 guards of the affected clients and services.

Discovery 2024-05-14
Entry 2024-05-18
arti

< 1.2.3

CVE-2024-35313
https://gitlab.torproject.org/tpo/core/arti/-/issues/1400
CVE-2024-35312
https://gitlab.torproject.org/tpo/core/arti/-/issues/1409