Details of VAR-201401-0517

ID

VAR-201401-0517

CVE

CVE-2013-7295

TITLE

Tor Vulnerability bypasses cryptographic protection mechanisms

Trust: 0.8

sources: JVNDB: JVNDB-2013-005865

DESCRIPTION

Tor before 0.2.4.20, when OpenSSL 1.x is used in conjunction with a certain HardwareAccel setting on Intel Sandy Bridge and Ivy Bridge platforms, does not properly generate random numbers for (1) relay identity keys and (2) hidden-service identity keys, which might make it easier for remote attackers to bypass cryptographic protection mechanisms via unspecified vectors. Tor (The Onion Router) is an implementation of the second generation onion routing, which is mainly used to access the Internet anonymously. There are security holes in Tor. An attacker could use this vulnerability to bypass security restrictions. There are vulnerabilities in Tor 0.2.4.19. Other versions may also be affected. This may aid in further attacks. Update to version 0.2.4.22 solves these major and security problems: - Block authority signing keys that were used on authorities vulnerable to the heartbleed bug in OpenSSL (CVE-2014-0160). - Fix a memory leak that could occur if a microdescriptor parse fails during the tokenizing step. - The relay ciphersuite list is now generated automatically based on uniform criteria, and includes all OpenSSL ciphersuites with acceptable strength and forward secrecy. - Relays now trust themselves to have a better view than clients of which TLS ciphersuites are better than others. - Clients now try to advertise the same list of ciphersuites as Firefox 28. For other changes see the upstream change log _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7295 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160 http://advisories.mageia.org/MGASA-2014-0059.html http://advisories.mageia.org/MGASA-2014-0256.html _______________________________________________________________________ Updated Packages: Mandriva Business Server 1/X86_64: 77035fd2ff3c6df5effbaf9ee78bdaf4 mbs1/x86_64/tor-0.2.4.22-1.mbs1.x86_64.rpm cccaec1a8425ebfce0bb7d8057d38d6e mbs1/SRPMS/tor-0.2.4.22-1.mbs1.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/en/support/security/advisories/ If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iD8DBQFTmDAPmqjQ0CJFipgRAqq4AJ9ZIEn/fqUynENotuSA2kTLnKwpJgCgkh59 ssWQCdn4l3H2KyxX+IQBsxw= =fSis -----END PGP SIGNATURE-----

Trust: 3.06

sources: NVD: CVE-2013-7295 // JVNDB: JVNDB-2013-005865 // CNVD: CNVD-2014-00091 // CNNVD: CNNVD-201401-078 // BID: 64651 // PACKETSTORM: 127069

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-00091

AFFECTED PRODUCTS

vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.1	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.7	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.3	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.10	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.8	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.9	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.6	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.4	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.5	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.2	Trust: 1.6
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.16	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.12	Trust: 1.0
vendor:	torproject	model:	tor	scope:	lte	version:	0.2.4.19	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.15	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.11	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.14	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.13	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.17	Trust: 1.0
vendor:	torproject	model:	tor	scope:	eq	version:	0.2.4.18	Trust: 1.0
vendor:	the tor	model:	tor	scope:	lt	version:	0.2.4.20	Trust: 0.8
vendor:	tor	model:	tor	scope:	eq	version:	0.2.4.19	Trust: 0.6

sources: CNVD: CNVD-2014-00091 // JVNDB: JVNDB-2013-005865 // CNNVD: CNNVD-201401-371 // NVD: CVE-2013-7295

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-7295
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2013-7295
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2014-00091
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201401-371
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2013-7295
severity:	MEDIUM
baseScore:	4.0
vectorString:	AV:N/AC:H/AU:N/C:P/I:P/A:N
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	4.9
impactScore:	4.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2014-00091
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	8.6
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2014-00091 // JVNDB: JVNDB-2013-005865 // CNNVD: CNNVD-201401-371 // NVD: CVE-2013-7295

PROBLEMTYPE DATA

problemtype:

CWE-310

Trust: 1.8

sources: JVNDB: JVNDB-2013-005865 // NVD: CVE-2013-7295

THREAT TYPE

local

Trust: 0.9

sources: BID: 64651 // CNNVD: CNNVD-201401-078

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201401-371

CONFIGURATIONS

sources: JVNDB: JVNDB-2013-005865

PATCH

title:	[tor-talk] Tor 0.2.4.20 is released	url:	https://lists.torproject.org/pipermail/tor-talk/2013-December/031483.html	Trust: 0.8
title:	Tor random number generation vulnerability patch	url:	https://www.cnvd.org.cn/patchInfo/show/42181	Trust: 0.6

sources: CNVD: CNVD-2014-00091 // JVNDB: JVNDB-2013-005865

EXTERNAL IDS

db:	NVD	id:	CVE-2013-7295	Trust: 2.8
db:	BID	id:	64651	Trust: 1.5
db:	JVNDB	id:	JVNDB-2013-005865	Trust: 0.8
db:	CNVD	id:	CNVD-2014-00091	Trust: 0.6
db:	CNNVD	id:	CNNVD-201401-078	Trust: 0.6
db:	MLIST	id:	[TOR-TALK] 20131223 TOR 0.2.4.20 IS RELEASED	Trust: 0.6
db:	CNNVD	id:	CNNVD-201401-371	Trust: 0.6
db:	PACKETSTORM	id:	127069	Trust: 0.1

sources: CNVD: CNVD-2014-00091 // BID: 64651 // JVNDB: JVNDB-2013-005865 // PACKETSTORM: 127069 // CNNVD: CNNVD-201401-078 // CNNVD: CNNVD-201401-371 // NVD: CVE-2013-7295

REFERENCES

url:	https://lists.torproject.org/pipermail/tor-talk/2013-december/031483.html	Trust: 1.9
url:	http://www.securityfocus.com/bid/64651	Trust: 1.2
url:	http://lists.opensuse.org/opensuse-updates/2014-01/msg00095.html	Trust: 1.0
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-7295	Trust: 0.9
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-7295	Trust: 0.8
url:	https://www.torproject.org/index.html.en	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2013-7295	Trust: 0.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0160	Trust: 0.1
url:	http://www.mandriva.com/en/support/security/	Trust: 0.1
url:	http://www.mandriva.com/en/support/security/advisories/	Trust: 0.1
url:	http://advisories.mageia.org/mgasa-2014-0059.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2014-0160	Trust: 0.1
url:	http://advisories.mageia.org/mgasa-2014-0256.html	Trust: 0.1

sources: CNVD: CNVD-2014-00091 // BID: 64651 // JVNDB: JVNDB-2013-005865 // PACKETSTORM: 127069 // CNNVD: CNNVD-201401-078 // CNNVD: CNNVD-201401-371 // NVD: CVE-2013-7295

CREDITS

Unknown

Trust: 0.3

sources: BID: 64651

SOURCES

db:	CNVD	id:	CNVD-2014-00091
db:	BID	id:	64651
db:	JVNDB	id:	JVNDB-2013-005865
db:	PACKETSTORM	id:	127069
db:	CNNVD	id:	CNNVD-201401-078
db:	CNNVD	id:	CNNVD-201401-371
db:	NVD	id:	CVE-2013-7295

LAST UPDATE DATE

2024-11-23T20:17:03.235000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-00091	date:	2014-01-08T00:00:00
db:	BID	id:	64651	date:	2014-06-11T19:35:00
db:	JVNDB	id:	JVNDB-2013-005865	date:	2014-01-23T00:00:00
db:	CNNVD	id:	CNNVD-201401-078	date:	2014-01-08T00:00:00
db:	CNNVD	id:	CNNVD-201401-371	date:	2014-01-23T00:00:00
db:	NVD	id:	CVE-2013-7295	date:	2024-11-21T02:00:40.880

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-00091	date:	2014-01-08T00:00:00
db:	BID	id:	64651	date:	2013-12-23T00:00:00
db:	JVNDB	id:	JVNDB-2013-005865	date:	2014-01-23T00:00:00
db:	PACKETSTORM	id:	127069	date:	2014-06-12T13:43:49
db:	CNNVD	id:	CNNVD-201401-078	date:	2013-12-23T00:00:00
db:	CNNVD	id:	CNNVD-201401-371	date:	2014-01-23T00:00:00
db:	NVD	id:	CVE-2013-7295	date:	2014-01-17T21:55:14.613