612228 – <net-vpn/tor-0.3.0.8: Integer underflow when comparing malformed tor versions

Bug 612228 - <net-vpn/tor-0.3.0.8: Integer underflow when comparing malformed tor versions

Summary: <net-vpn/tor-0.3.0.8: Integer underflow when comparing malformed tor versions

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor (vote)
Assignee:	Gentoo Security

URL:	https://bugzilla.redhat.com/show_bug....
Whiteboard:	B3 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2017-03-10 16:36 UTC by Agostino Sarubbo
Modified:	2017-09-10 23:05 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Agostino Sarubbo gentoo-dev

2017-03-10 16:36:54 UTC

From ${URL} :

An integer overflow vulnerability was found in Tor. The application could crash while comparing malformed Tor versions when built with --enable-expensive-hardening.

Upstream bug:

https://trac.torproject.org/projects/tor/ticket/21278

Upstream patches:

https://gitweb.torproject.org/tor.git/commit/?id=a0ef3cf0880e3cd343977b3fcbd0a2e7572f0cb4
https://gitweb.torproject.org/tor.git/commit/?id=194e31057fbf07d6bdf4b62d26e1a9db334e5f1c
Related:
https://gitweb.torproject.org/tor.git/commit/?id=1afc2ed956a35b40dfd1d207652af5b50c295da7
Extra fix:
https://gitweb.torproject.org/tor.git/commit/?id=02e05bd74dbec614397b696cfcda6525562a4675


@maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.

Comment 1 Aaron Bauman (RETIRED) gentoo-dev

2017-07-17 01:31:01 UTC

Fix is in 0.3.0.8

Comment 2 Aaron Bauman (RETIRED) gentoo-dev

2017-09-10 23:05:30 UTC

Tree is clean.

GLSA Vote: No