High severity7.5NVD Advisory· Published Mar 5, 2018· Updated Jun 17, 2026
CVE-2018-0491
CVE-2018-0491
Description
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versions
< 0.4.6.7-2.2+ 1 more
- (no CPE)range: < 0.4.6.7-2.2
- (no CPE)range: < 0.3.2.10-14.1
Patches
Vulnerability mechanics
References
4- trac.torproject.org/projects/tor/ticket/25117nvdIssue TrackingPatchVendor Advisory
- www.exploit-db.com/exploits/44994/nvdExploitThird Party AdvisoryVDB Entry
- blog.torproject.org/new-stable-tor-releases-security-fixes-and-dos-prevention-03210-03110-02915nvdVendor Advisory
- trac.torproject.org/projects/tor/ticket/24700nvdIssue TrackingMitigationVendor Advisory
News mentions
0No linked articles in our index yet.