8 matches found
Mageia: Security Advisory (MGASA-2014-0312)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for tor FEDORA-2014-9073
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 20 : tor-0.2.4.23-1.fc20 (2014-9082)
Security fix for CVE-2014-5117 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
openSUSE Security Update : tor (openSUSE-SU-2014:0975-1)
Tor 0.2.4.23 bnc889688 CVE-2014-5117 Slows down the risk from guard rotation and backports several important fixes from the Tor 0.2.5 alpha release series. - Major features : - Clients now look at the 'usecreatefast' consensus parameter to decide whether to use CREATEFAST or CREATE cells for the...
Mandriva Linux Security Advisory : tor (MDVSA-2014:150)
Updated tor package fixes security vulnerability : Tor before 0.2.4.23 maintains a circuit after an inbound RELAYEARLY cell is received by a client, which makes it easier for remote attackers to conduct traffic-confirmation attacks by using the pattern of RELAY and RELAYEARLY cells as a means of...
[SECURITY] [DSA 2993-1] tor security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2993-1 [email protected] http://www.debian.org/security/ Peter Palfrader July 31, 2014 http://www.debian.org/security/faq -...
CVE-2014-5117
CVE-2014-5117 affects Tor: in Tor 0.2.4.23 and 0.2.5 before 0.2.5.6-alpha, a client can be left with a circuit after an inbound RELAY_EARLY cell, enabling traffic-confirmation via RELAY/RELAY_EARLY patterns. Public advisories across multiple distros (Fedora/OpenSUSE/Mandriva) reference this vulne...
Debian: Security Advisory (DSA-2993-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...