Hdevalence

**Name of the Vulnerable Software and Affected Versions** Tor versions prior to 0.3.5.16 Tor versions prior to 0.4.5.10 Tor versions prior to 0.4.6.7 **Description** The issue is related to how Tor handles the relationship between batch-signature verification and single-signature verification, leading to a remote assertion failure. This can be used to initiate a denial of service. The problem occurs due to a discrepancy in the behavior of code for verifying digital signatures individually and in batch mode. **Recommendations** For versions prior to 0.3.5.16, update to version 0.3.5.16 or later. For versions prior to 0.4.5.10, update to version 0.4.5.10 or later. For versions prior to 0.4.6.7, update to version 0.4.6.7 or later.