CVE-2021-34550

Name	CVE-2021-34550
Description	An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory access, and a client crash, via a crafted onion service descriptor
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub advisories/code/issues, web search, more)
References	DSA-4932-1
Debian Bugs	990000

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
tor (PTS)	buster	0.3.5.16-1	fixed
	buster (security)	0.3.5.16-1+deb10u1	fixed
	bullseye (security), bullseye	0.4.5.16-1	fixed
	bookworm, sid	0.4.7.13-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
tor	source	stretch	(unfixed)	end-of-life
tor	source	buster	0.3.5.15-1		DSA-4932-1
tor	source	(unstable)	0.4.5.9-1			990000

[stretch] - tor <end-of-life> (See DSA 4644)
https://blog.torproject.org/node/2041