{"affected":[{"ecosystem_specific":{"binaries":[{"tor":"0.3.2.10-14.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12","name":"tor","purl":"pkg:rpm/suse/tor&distro=SUSE%20Package%20Hub%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.3.2.10-14.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for tor to version 0.3.2.10 fixes security issues and bugs.\n\nThe following vulnerabilities were fixed:\n\n- CVE-2018-0490: remote crash vulnerability against directory authorities (boo#1083845, TROVE-2018-001)\n- CVE-2018-0491: remote relay crash (boo#1083846, TROVE-2018-002)\n\nThis new upstream stable version also contains a new system for improved resistance to DoS attacks against relays and various other bug fixes.","id":"openSUSE-SU-2018:0620-1","modified":"2018-03-06T19:19:46Z","published":"2018-03-06T19:19:46Z","references":[{"type":"ADVISORY","url":null},{"type":"REPORT","url":"https://bugzilla.suse.com/1083845"},{"type":"REPORT","url":"https://bugzilla.suse.com/1083846"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-0490"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-0491"}],"related":["CVE-2018-0490","CVE-2018-0491"],"summary":"Security update for tor","upstream":["CVE-2018-0490","CVE-2018-0491"]}