CVE-2024-35313

Name of the Vulnerable Software and Affected Versions Tor Arti versions prior to 1.2.3

Description The issue arises when building anonymizing circuits to or from an onion service with 'lite' or 'full' vanguards enabled. The circuit manager code builds the circuits with one hop too few, making users more vulnerable to traffic analysis when running or visiting onion services. Only users who make connections to Onion Services are affected, and malicious web pages can typically make such connections when used as a browser proxy.

Recommendations For Tor Arti versions prior to 1.2.3, rebuild arti with a fixed version of tor-circmgr: 0.18.1 or later. As a temporary workaround, consider preventing access to Tor Hidden Services by setting allow onion addrs = false in the Arti configuration file to minimize the risk of exploitation. Enable the "full vanguards" feature, which has some cost in terms of performance, reliability, and impact on the Tor Network, but provides a higher security level than the "vanguards lite" configuration.