{"id":"CVE-2011-4895","details":"Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by observing circuit building.","modified":"2026-04-10T03:44:09.759964Z","published":"2011-12-23T03:59:22Z","related":["openSUSE-SU-2024:10423-1"],"references":[{"type":"ADVISORY","url":"https://blog.torproject.org/blog/tor-02234-released-security-patches"},{"type":"FIX","url":"https://blog.torproject.org/blog/tor-02234-released-security-patches"}],"schema_version":"1.7.5"}