12 matches found
Fedora 27 : tor (2017-bc2edc421d)
update to upstream release 0.3.1.9. Fixes various CVEs : - CVE-2017-8819: Replay-cache ineffective for v2 onion services - CVE-2017-8820: Remote DoS attack against directory authorities - CVE-2017-8821: An attacker can make Tor ask for a password - CVE-2017-8822: Relays can pick themselves in a...
Fedora Update for tor FEDORA-2017-bc2edc421d
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for tor FEDORA-2017-bce9e03721
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ASA-201712-10] tor: multiple issues
Arch Linux Security Advisory ASA-201712-10 ========================================== Severity: High Date : 2017-12-16 CVE-ID : CVE-2017-8819 CVE-2017-8820 CVE-2017-8822 CVE-2017-8823 Package : tor Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-539 Summary ======= T...
openSUSE Security Update : tor (openSUSE-2017-1336)
This update for tor fixes vulnerabilities that allowed some traffic confirmation, DoS and other attacks bsc1070849 : - CVE-2017-8819: Replay-cache ineffective for v2 onion services - CVE-2017-8820: Remote DoS attack against directory authorities - CVE-2017-8821: An attacker can make Tor ask for a...
Security fix for the ALT Linux 8 package tor version 0.3.1.9-alt1.M80P.1
0.3.1.9-alt1.M80P.1 built Dec. 6, 2017 Vladimir Didenko in task 195838 Dec. 1, 2017 Vladimir Didenko - new version Fixes: CVE-2017-8819, CVE-2017-8820, CVE-2017-8821, CVE-2017-8822, CVE-2017-8823...
Debian DSA-4054-1 : tor - security update
Multiple vulnerabilities have been found in Tor, a connection-based low-latency anonymous communication system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4054. The text itself is...
[SECURITY] [DSA 4054-1] tor security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4054-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 03, 2017 https://www.debian.org/security/faq -...
CVE-2017-8822
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays that have incompletely downloaded descriptors can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012...
CVE-2017-8822
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays that have incompletely downloaded descriptors can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012...
CVE-2017-8822
CVE-2017-8822 affects Tor relays with incompletely downloaded descriptors, enabling them to pick themselves in a circuit path and cause a degradation of anonymity. Descriptions across connected advisories confirm the issue and upstream fix is to upgrade to Tor 0.3.1.9 (or newer). Upstream notes a...
CVE-2017-8822
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays that have incompletely downloaded descriptors can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012...