This vulnerability might allow an attacker who already knows your *OnionShare* address to make your Tor client crash. A powerful attacker might be able to further exploit this crash to reveal your IP address.
This analysis is only a hypothesis because our team doesn't have access to more details about this vulnerability. Still, we are releasing this emergency release as a precaution.
*OnionShare* is the only application included in Tails that creates onion services. You are not affected by this vulnerability if you don't use *OnionShare* in Tails and only use Tails to connect to onion services and don't create onion services using Additional Software.