2017-07-02 15:00:00
debian
PUBLISHED
Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relays family), which might allow remote attackers to defeat intended anonymity properties by leveraging the existence of large families.