CVE-2010-1676 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1676): Heap-based buffer overflow in Tor before 0.2.1.28 and 0.2.2.x before 0.2.2.20-alpha allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.
This issues was handled in bug 349312 and disclosed via http://www.gentoo.org/security/en/glsa/glsa-201101-02.xml. *** This bug has been marked as a duplicate of bug 349312 ***