CVE-2017-8822
Published: 3 December 2017
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays (that have incompletely downloaded descriptors) can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012.
From the Ubuntu Security Team
It was discovered that Tor could make itself part of a circuit path resulting in degraded anonymity.
Priority
Status
Package | Release | Status |
---|---|---|
tor Launchpad, Ubuntu, Debian |
artful |
Released
(0.3.0.13-0ubuntu1~17.10.2)
|
bionic |
Not vulnerable
(0.3.1.9-1)
|
|
cosmic |
Not vulnerable
(0.3.1.9-1)
|
|
trusty |
Released
(0.2.4.27-1ubuntu0.1)
|
|
upstream |
Released
(0.2.9.14-1, 0.3.1.9-1)
|
|
xenial |
Released
(0.2.9.14-1ubuntu1~16.04.2)
|
|
zesty |
Ignored
(end of life)
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 3.7 |
Attack vector | Network |
Attack complexity | High |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | Low |
Integrity impact | None |
Availability impact | None |
Vector | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N |