Toktok Toxcore
3 CVEs affecting Toktok Toxcore. Latest disclosed: 2021-12-13. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-44847 | Critical | 9.8 | 2021-12-13 | A stack-based buffer overflow in handle_request function in DHT.c in toxcore 0.1.9 through 0.1.11 and 0.2.0 through 0.2.12 (caused by an improper length calcul… |
CVE-2018-25021 | High | 7.5 | 2021-12-13 | The TCP Server module in toxcore before 0.2.8 doesn't free the TCP priority queue under certain conditions, which allows a remote attacker to exhaust the syste… |
CVE-2018-25022 | Low | 3.1 | 2021-12-13 | The Onion module in toxcore before 0.2.2 doesn't restrict which packets can be onion-routed, which allows a remote attacker to discover a target user's IP addr… |