tor vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the tor package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M CVE-2023-23589	<0.3.5.16-1+deb10u1
H Reachable Assertion	<0.3.5.16-1
H Out-of-Bounds	<0.3.5.15-1
H Improper Handling of Exceptional Conditions	<0.3.5.15-1
H Incorrect Authorization	<0.3.5.15-1
M CVE-2021-28090	<0.3.5.14-1
H Resource Exhaustion	<0.3.5.14-1
L Out-of-Bounds	*
H Resource Exhaustion	<0.3.5.10-1
L Information Exposure	*
H Allocation of Resources Without Limits or Throttling	<0.3.5.8-1
H Improper Handling of Exceptional Conditions	<0.2.5.11-1
H CVE-2015-2929	<0.2.5.12-1
H CVE-2015-2928	<0.2.5.12-1
H Improper Input Validation	<0.2.5.11-1
H NULL Pointer Dereference	<0.3.2.10-1
H Use After Free	<0.3.2.10-1
H Out-of-Bounds	<0.2.9.8-2
H NULL Pointer Dereference	<0.3.1.9-1
H Out-of-Bounds	<0.3.1.9-1
L Channel and Path Errors	<0.3.1.9-1
H CVE-2017-8819	<0.3.1.9-1
H Use After Free	<0.3.1.9-1
M Information Exposure Through Log Files	<0.3.1.7-1
H CVE-2017-11565	<0.3.1.7-1
H Reachable Assertion	<0.2.9.11-1
H Out-of-Bounds	<0.2.8.9-1
M CVE-2014-5117	<0.2.4.23-1
L CVE-2012-2249	<0.2.3.23-rc-1
L CVE-2012-2250	<0.2.3.24-rc-1
L Cryptographic Issues	<0.2.4.20-1
L Resource Management Errors	<0.2.3.25-1
M CVE-2012-4419	<0.2.3.22-rc-1
M Improper Input Validation	<0.2.3.22-rc-1
L Resource Management Errors	<0.2.3.20-rc-1
L Information Exposure	<0.2.3.20-rc-1
L Out-of-Bounds	<0.2.3.20-rc-1
L Information Exposure	<0.2.2.27-beta-1
L Information Exposure	<0.2.2.34-1
M Information Exposure	<0.2.2.34-1
L Information Exposure	<0.2.2.27-beta-1
L Information Exposure	<0.2.2.34-1
M Access Restriction Bypass	<0.2.2.34-1
H Out-of-Bounds	<0.2.2.35-1
M Out-of-Bounds	<0.2.1.30-1
M Resource Management Errors	<0.2.1.29-1
M Out-of-Bounds	<0.2.1.29-1
M Improper Input Validation	<0.2.1.29-1
M CVE-2011-0490	<0.2.1.29-1
M Resource Management Errors	<0.2.1.29-1
M Improper Input Validation	<0.2.1.29-1
M Numeric Errors	<0.2.1.29-1
C Out-of-Bounds	<0.2.1.26-6
L Information Exposure	<0.2.1.22-1
M Information Exposure	<0.2.1.22-1
L CVE-2009-2426	<0.2.0.35-1
L Improper Input Validation	<0.2.0.35-1
M CVE-2009-0938	<0.2.0.34-1
M CVE-2009-0937	<0.2.0.34-1
C CVE-2009-0939	<0.2.0.34-1
M CVE-2009-0936	<0.2.0.34-1
L CVE-2009-0654	*
C Resource Management Errors	<0.2.0.33-1
H Access Restriction Bypass	<0.2.0.32-1
H Access Restriction Bypass	<0.2.0.32-1
M Access Restriction Bypass	<0.1.2.16-1
M CVE-2007-4096	<0.1.2.15-1
M CVE-2007-4099	<0.1.2.15-1
M CVE-2007-4097	<0.1.2.15-1
M CVE-2007-4098	<0.1.2.15-1
M CVE-2007-3165	<0.1.2.14-1
L CVE-2007-1103	*
L CVE-2006-6893	*
M CVE-2006-4508	<0.1.1.23-1
M CVE-2006-3408	<0.1.1.20-1
M CVE-2006-3411	<0.1.1.20-1
M CVE-2006-3417	<0.1.1.20-1
M CVE-2006-3415	<0.1.1.20-1
M CVE-2006-3418	<0.1.1.20-1
M CVE-2006-3416	<0.1.1.20-1
M CVE-2006-3407	<0.1.1.20-1
M CVE-2006-3419	<0.1.1.20-1
M CVE-2006-3410	<0.1.1.20-1
H CVE-2006-3409	<0.1.1.20-1
M CVE-2006-3413	<0.1.1.20-1
M CVE-2006-3412	<0.1.1.20-1
M CVE-2006-3414	<0.1.1.20-1
M CVE-2006-0414	<0.1.1.11-alpha-1
M CVE-2005-2643	<0.1.0.14-1
M CVE-2005-2050	<0.0.9.10-1

Vulnerability

Vulnerable Version

CVE-2023-23589

<0.3.5.16-1+deb10u1