CVE-2017-0377 log

Severity Medium
Remote Yes
Type Session hijacking
A security issue has been found in Tor <=, which could make it easier to eavesdrop on Tor users' traffic. When choosing which guard to use for a circuit, Tor avoids using a node that is in the same family that the exit node it selected, but this check was accidentally removed in 0.3.0.
Group Package Affected Fixed Severity Status Ticket
AVG-336 tor Medium Fixed
Date Advisory Group Package Severity Type
11 Jul 2017 ASA-201707-8 AVG-336 tor Medium session hijacking