CVE-2014-5117

Tor before 0.2.4.23 and 0.2.5 before 0.2.5.6-alpha maintains a circuit after an inbound RELAY_EARLY cell is received by a client, which makes it easier for remote attackers to conduct traffic-confirmation attacks by using the pattern of RELAY and RELAY_EARLY cells as a means of communicating information about hidden service names.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
VendorProductVersion
torprojecttor
𝑥
≤ 0.2.4.22
torprojecttor
0.0.2
torprojecttor
0.0.2:pre13
torprojecttor
0.0.2:pre14
torprojecttor
0.0.2:pre15
torprojecttor
0.0.2:pre16
torprojecttor
0.0.2:pre17
torprojecttor
0.0.2:pre18
torprojecttor
0.0.2:pre19
torprojecttor
0.0.2:pre20
torprojecttor
0.0.2:pre21
torprojecttor
0.0.2:pre22
torprojecttor
0.0.2:pre23
torprojecttor
0.0.2:pre24
torprojecttor
0.0.2:pre25
torprojecttor
0.0.2:pre26
torprojecttor
0.0.2:pre27
torprojecttor
0.0.3
torprojecttor
0.0.4
torprojecttor
0.0.5
torprojecttor
0.0.6
torprojecttor
0.0.6.1
torprojecttor
0.0.6.2
torprojecttor
0.0.7
torprojecttor
0.0.7.1
torprojecttor
0.0.7.2
torprojecttor
0.0.7.3
torprojecttor
0.0.8.1
torprojecttor
0.0.9.1
torprojecttor
0.0.9.2
torprojecttor
0.0.9.3
torprojecttor
0.0.9.4
torprojecttor
0.0.9.5
torprojecttor
0.0.9.6
torprojecttor
0.0.9.7
torprojecttor
0.0.9.8
torprojecttor
0.0.9.9
torprojecttor
0.0.9.10
torprojecttor
0.1.0.10
torprojecttor
0.1.0.11
torprojecttor
0.1.0.12
torprojecttor
0.1.0.13
torprojecttor
0.1.0.14
torprojecttor
0.1.0.15
torprojecttor
0.1.0.16
torprojecttor
0.1.0.17
torprojecttor
0.1.1.20
torprojecttor
0.1.1.21
torprojecttor
0.1.1.22
torprojecttor
0.1.1.23
torprojecttor
0.1.1.24
torprojecttor
0.1.1.25
torprojecttor
0.1.1.26
torprojecttor
0.1.2.13
torprojecttor
0.1.2.14
torprojecttor
0.1.2.15
torprojecttor
0.1.2.16
torprojecttor
0.1.2.17
torprojecttor
0.1.2.18
torprojecttor
0.1.2.19
torprojecttor
0.2.0.30
torprojecttor
0.2.0.31
torprojecttor
0.2.0.32
torprojecttor
0.2.0.33
torprojecttor
0.2.0.34
torprojecttor
0.2.0.35
torprojecttor
0.2.2.18
torprojecttor
0.2.2.19
torprojecttor
0.2.2.20
torprojecttor
0.2.2.21
torprojecttor
0.2.2.22
torprojecttor
0.2.2.23
torprojecttor
0.2.2.24
torprojecttor
0.2.2.25
torprojecttor
0.2.2.26
torprojecttor
0.2.2.27
torprojecttor
0.2.2.28
torprojecttor
0.2.2.29
torprojecttor
0.2.2.30
torprojecttor
0.2.2.31
torprojecttor
0.2.2.32
torprojecttor
0.2.2.33
torprojecttor
0.2.2.34
torprojecttor
0.2.2.35
torprojecttor
0.2.2.36
torprojecttor
0.2.2.37
torprojecttor
0.2.2.38
torprojecttor
0.2.3
torprojecttor
0.2.3.13:alpha
torprojecttor
0.2.3.14:alpha
torprojecttor
0.2.3.15:alpha
torprojecttor
0.2.3.16:alpha
torprojecttor
0.2.3.17:beta
torprojecttor
0.2.3.18:rc
torprojecttor
0.2.3.19:rc
torprojecttor
0.2.3.20:rc
torprojecttor
0.2.3.21:rc
torprojecttor
0.2.3.22:rc
torprojecttor
0.2.3.23:rc
torprojecttor
0.2.3.24:rc
torprojecttor
0.2.4.1:alpha
torprojecttor
0.2.4.2:alpha
torprojecttor
0.2.4.3:alpha
torprojecttor
0.2.4.4:alpha
torprojecttor
0.2.4.5:alpha
torprojecttor
0.2.4.6:alpha
torprojecttor
0.2.4.7:alpha
torprojecttor
0.2.4.8:alpha
torprojecttor
0.2.4.9:alpha
torprojecttor
0.2.4.10:alpha
torprojecttor
0.2.4.11:alpha
torprojecttor
0.2.4.12:alpha
torprojecttor
0.2.4.13:alpha
torprojecttor
0.2.4.14:alpha
torprojecttor
0.2.4.15:rc
torprojecttor
0.2.4.16:rc
torprojecttor
0.2.4.17:rc
torprojecttor
0.2.4.18:rc
torprojecttor
0.2.4.19
torprojecttor
0.2.4.20
torprojecttor
0.2.5.2:alpha
torprojecttor
0.2.5.3:alpha
torprojecttor
0.2.5.4:alpha
torprojecttor
0.2.5.5:alpha
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tor
bullseye (security)
0.4.5.16-1
fixed
bullseye
0.4.5.16-1
fixed
bookworm
0.4.7.16-1
fixed
bookworm (security)
0.4.7.16-1
fixed
sid
0.4.8.13-2
fixed
trixie
0.4.8.13-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tor
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
Fixed 0.2.5.12-1build0.15.04.1
released
utopic
ignored
trusty
Fixed 0.2.4.27-1build0.14.04.1
released
precise
ignored
lucid
dne
References
http://secunia.com/advisories/60084
http://secunia.com/advisories/60647
https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack
https://lists.torproject.org/pipermail/tor-announce/2014-July/000093.html
https://lists.torproject.org/pipermail/tor-announce/2014-July/000094.html
https://lists.torproject.org/pipermail/tor-talk/2014-July/034180.html
https://trac.torproject.org/projects/tor/ticket/1038
http://secunia.com/advisories/60084
http://secunia.com/advisories/60647
https://blog.torproject.org/blog/tor-security-advisory-relay-early-traffic-confirmation-attack
https://lists.torproject.org/pipermail/tor-announce/2014-July/000093.html
https://lists.torproject.org/pipermail/tor-announce/2014-July/000094.html
https://lists.torproject.org/pipermail/tor-talk/2014-July/034180.html
https://trac.torproject.org/projects/tor/ticket/1038