openSUSE Security Update : tor (openSUSE-2018-223)
Medium Nessus Plugin ID 107179
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for tor to version 0.3.2.10 fixes security issues and bugs.
The following vulnerabilities were fixed :
- CVE-2018-0490: remote crash vulnerability against directory authorities (boo#1083845, TROVE-2018-001)
- CVE-2018-0491: remote relay crash (boo#1083846, TROVE-2018-002)
This new upstream stable version also contains a new system for improved resistance to DoS attacks against relays and various other bug fixes.
SolutionUpdate the affected tor packages.