First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 134329
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Raphael Marichez <falco@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 134329 depends on: Show dependency tree
Bug 134329 blocks: 118918

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-05-25 07:33 0000 
Hi,

Secunia advises to update to version 0.1.1.20.
This may also correct bug 118918 (Information disclosure).

---------------------------------------------


Software:       Tor 0.1.0.x

Description:
Some vulnerabilities and a weakness have been reported in Tor, which can be
exploited by malicious people to spoof log entries, disclose certain sensitive
information, and cause a DoS (Denial of Service).

1) Input strings received from the network isn't properly sanitised before
being displayed. This can potentially be exploited to spoof log entries via
certain non-printable characters.

2) An unspecified error in the directory server can be exploited to cause a
DoS.

3) Some integer overflow errors exists when adding elements to smartlists. This
can potentially be exploited to cause a buffer overflow via malicious large
inputs.

4) An error in which internal circuits are picked based on the circuits having
useful exit nodes, can potentially reveal certain information via statistical
attacks.

The vulnerabilities and weakness have been reported in versions prior to
0.1.1.20.

Note: Several other issues, which may be security related, have also been
fixed.

Solution:
Update to version 0.1.1.20.
http://tor.eff.org/download.html

Provided and/or discovered by:
1-3) Reported by vendor.
4) Lasse Overlier

Original Advisory:
http://tor.eff.org/cvs/tor/ChangeLog

------- Comment #1 From Raphael Marichez 2006-05-25 07:34:06 0000 ------- 
Setting to B2 because of #3 :

3) Some integer overflow errors exists when adding elements to smartlists. This
can potentially be exploited to cause a buffer overflow via malicious large
inputs.

------- Comment #2 From Thierry Carrez (RETIRED) 2006-05-25 11:07:08 0000 ------- 
0.1.1.20 has entry guards so should fix bug 118918 as well.

------- Comment #3 From Thierry Carrez (RETIRED) 2006-05-30 11:27:52 0000 ------- 
humpback, please bump tor

------- Comment #4 From Stefan Cornelius (RETIRED) 2006-05-31 20:13:55 0000 ------- 
Arches please test and mark 0.1.1.20 stable, thank you.

Last bug activity of humpback: 132125: 2006-05-08 05:27:31
So I bumped this myself, without the untested chroot stuff.

------- Comment #5 From Joshua Jackson 2006-05-31 22:57:58 0000 ------- 
x86 is done. Good old tor.

------- Comment #6 From Markus Rothe 2006-05-31 23:44:18 0000 ------- 
stable on ppc64

------- Comment #7 From Tobias Scherbaum 2006-06-01 11:30:22 0000 ------- 
ppc stable

------- Comment #8 From Gustavo Zacarias (RETIRED) 2006-06-01 13:20:08 0000 ------- 
sparc stable.

------- Comment #9 From Simon Stelling (RETIRED) 2006-06-05 10:07:51 0000 ------- 
amd64 staaable

------- Comment #10 From Sune Kloppenborg Jeppesen 2006-06-07 11:09:50 0000 ------- 
GLSA 200606-04
First Last Prev Next    No search results available      Search page      Enter new bug