Lucene search
PRIOn knowledge basePRION:CVE-2013-7295HistoryJan 17, 2014 - 9:55 p.m.
Design/Logic Flaw
2014-01-1721:55:00
PRIOn knowledge base
www.prio-n.com
3
Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for (1) relay identity keys and (2) hidden-service identity keys, which might make it easier for remote attackers to bypass cryptographic protection mechanisms via unspecified vectors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tor | eq | 0.2.4.15 rc | |
| tor | eq | 0.2.4.6 alpha | |
| tor | eq | 0.2.4.1 alpha | |
| tor | eq | 0.2.4.2 alpha | |
| tor | eq | 0.2.4.12 alpha | |
| tor | eq | 0.2.4.9 alpha | |
| tor | eq | 0.2.4.4 alpha | |
| tor | eq | 0.2.4.14 alpha | |
| tor | eq | 0.2.4.8 alpha | |
| tor | eq | 0.2.4.17 rc |
Related
cve
cve
CVE-2013-7295
2014-01-17 21:55:14
mageia
mageia
Updated tor package fixes security vulnerability
2014-02-12 21:13:24
cvelist
cvelist
CVE-2013-7295
2014-01-17 19:00:00
nessus
nessus
openSUSE Security Update : tor (openSUSE-SU-2014:0143-1)
2014-06-13 00:00:00
Mandriva Linux Security Advisory : tor (MDVSA-2014:123)
2014-06-12 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0059)
2022-01-28 00:00:00
ubuntucve
ubuntucve
CVE-2013-7295
2014-01-17 00:00:00
nvd
nvd
CVE-2013-7295
2014-01-17 21:55:14
debiancve
debiancve
CVE-2013-7295
2014-01-17 21:55:14