Test ID:	1.3.6.1.4.1.25623.1.1.12.2022.5036.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-5036-1)
Summary:	The remote host is missing an update for the 'tor' package(s) announced via the USN-5036-1 advisory.
Description:	Summary: The remote host is missing an update for the 'tor' package(s) announced via the USN-5036-1 advisory. Vulnerability Insight: It was discovered that Tor incorrectly handled certain memory operations. A remote attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 ESM. (CVE-2019-8955) It was discovered that Tor did not properly handle the input length to dump_desc() function. A remote attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 ESM and Ubuntu 20.04 ESM. (CVE-2021-28089) It was discovered that Tor did not properly sanitize the relay nickname in dirvote_add_signatures_to_pending_consensus() function. An attacker could possibly use this issue to cause an assertion failure and then cause a denial of service. (CVE-2021-28090) It was discovered that Tor did not properly validate the layer hint on half-open streams. A remote attacker could possibly use this issue to bypass the access control, leading to remote code execution. This issue only affected Ubuntu 20.04 ESM. (CVE-2021-34548) It was discovered that Tor was using an insecure hash function. A remote attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 ESM and Ubuntu 20.04 ESM. (CVE-2021-34549) It was discovered that Tor did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted request, a remote attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly reading sensitive data. This issue only affected Ubuntu 18.04 ESM and Ubuntu 20.04 ESM. (CVE-2021-34550) It was discovered that Tor mishandles the relationship between batch-signature verification and single-signature verification. An attacker could possibly use this issue to cause an assertion failure and then cause a denial of service. This issue only affected Ubuntu 16.04 ESM, Ubuntu 18.04 ESM and Ubuntu 20.04 ESM. (CVE-2021-38385) Affected Software/OS: 'tor' package(s) on Ubuntu 14.04, Ubuntu 16.04, Ubuntu 18.04, Ubuntu 20.04. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2019-8955 BugTraq ID: 107136 http://www.securityfocus.com/bid/107136 https://blog.torproject.org/new-releases-tor-0402-alpha-0358-03411-and-03312 https://trac.torproject.org/projects/tor/ticket/29168 SuSE Security Announcement: openSUSE-SU-2019:1107 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00013.html Common Vulnerability Exposure (CVE) ID: CVE-2021-28089 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HPDXB2GZHG3VNOTWSXQ3QZVHNV76WCU5/ https://security.gentoo.org/glsa/202107-25 https://gitlab.torproject.org/tpo/core/tor/-/issues/40304 Common Vulnerability Exposure (CVE) ID: CVE-2021-28090 https://gitlab.torproject.org/tpo/core/tor/-/issues/40316 Common Vulnerability Exposure (CVE) ID: CVE-2021-34548 http://packetstormsecurity.com/files/163510/Tor-Half-Closed-Connection-Stream-Confusion.html https://gitlab.torproject.org/tpo/core/tor/-/issues/40389 Common Vulnerability Exposure (CVE) ID: CVE-2021-34549 https://gitlab.torproject.org/tpo/core/tor/-/issues/40391 Common Vulnerability Exposure (CVE) ID: CVE-2021-34550 https://gitlab.torproject.org/tpo/core/tor/-/issues/40392 Common Vulnerability Exposure (CVE) ID: CVE-2021-38385 https://security.gentoo.org/glsa/202305-11 https://blog.torproject.org
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.