---

CVE-2021-28089 - log back

CVE-2021-28089 edited at 16 Mar 2021 18:22:22
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ A security issue was found in Tor before versions 0.4.5.7, 0.4.4.8 and 0.3.5.14. The dump_desc() function was called incorrectly in several places in a way that could lead to excessive CPU usage.
References	+ https://blog.torproject.org/node/2009 + https://gitlab.torproject.org/tpo/core/tor/-/issues/40286 + https://gitlab.torproject.org/tpo/core/tor/-/commit/ede88c374cd61e1e362422718625707a770cffff
Notes

CVE-2021-28089 created at 16 Mar 2021 18:18:13