CVE-2011-0015

EPSS 2.3%

tor - several

Published: 1/19/2011Modified: 3/9/2026

Also known as:DSA-2148-1DEBIAN-CVE-2011-0015

Description

Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not properly check the amount of compression in zlib-compressed data, which allows remote attackers to cause a denial of service via a large compression factor.

Affected packages (2)

Debian/torfrom 0, < 0.2.1.29-1
Debian/torfrom 0, < 0.2.1.29-1~lenny+1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-0015