Filtered by vendor Torproject
Subscribe
Total
46 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-44601 | 1 Torproject | 1 Tor | 2026-05-08 | N/A | 3.7 LOW |
| Tor before 0.4.9.7, when circuit queue memory pressure exists, can experience a client crash because of a double close of a circuit, aka TROVE-2026-009. | |||||
| CVE-2026-44602 | 1 Torproject | 1 Tor | 2026-05-08 | N/A | 3.7 LOW |
| Tor before 0.4.9.7 has a NULL pointer dereference when a CERT cell is received out of order, aka TROVE-2026-006. | |||||
| CVE-2026-44597 | 1 Torproject | 1 Tor | 2026-05-07 | N/A | 3.7 LOW |
| Tor before 0.4.9.7 has an out-of-bounds read when an END, a TRUNCATE, or a TRUNCATED cell lacks a reason in its payload, aka TROVE-2026-011. | |||||
| CVE-2026-44599 | 1 Torproject | 1 Tor | 2026-05-07 | N/A | 3.7 LOW |
| Tor before 0.4.9.7 can attempt or accept BEGIN_DIR via conflux legs, aka TROVE-2026-008. | |||||
| CVE-2026-44600 | 1 Torproject | 1 Tor | 2026-05-07 | N/A | 3.7 LOW |
| Tor before 0.4.9.7 mishandles accounting of the conflux out-of-order queue during the clearing of a queue, aka TROVE-2026-010. | |||||
| CVE-2026-44603 | 1 Torproject | 1 Tor | 2026-05-07 | N/A | 3.7 LOW |
| Tor before 0.4.9.7 has an out-of-bounds read by one byte via a malformed BEGIN cell, aka TROVE-2026-007. | |||||