Upstream has released new versions today (March 3): https://blog.torproject.org/new-stable-tor-releases-security-fixes-and-dos-prevention-03210-03110-02915 The issues are fixed in 0.3.2.10, 0.3.1.10, and 0.2.9.15. BTW we should have stuck with 0.2.9.x in Cauldron as it is supported through 2020. Mageia 5 and Mageia 6 are also affected.
Whiteboard: (none) => MGA6TOO
Pushed 0.3.2.10 to cauldron and 0.2.9.15 to mga6 core/updates_testing. SRPM/RPM for mga6: tor-0.2.9.15-1.mga6
Assignee: jani.valimaa => qa-bugsCC: (none) => jani.valimaa
Version: Cauldron => 6Whiteboard: MGA6TOO => (none)
Installed and tested without issues. System: Mageia 6, x86_64, Intel CPU. Tested using firefox, configured to use tor's SOCKS 5 proxy. Also used vidalia to control tor. $ uname -a Linux marte 4.14.20-desktop-1.mga6 #1 SMP Sun Feb 18 01:22:02 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux $ rpm -q tor tor-0.2.9.15-1.mga6 $ systemctl status tor ● tor.service - Anonymizing overlay network for TCP Loaded: loaded (/usr/lib/systemd/system/tor.service; enabled; vendor preset: enabled) Active: active (running) since Dom 2018-03-04 17:42:28 WET; 1h 11min ago Main PID: 5974 (tor) CPU: 4.380s CGroup: /system.slice/tor.service └─5974 /usr/bin/tor --runasdaemon 0 --defaults-torrc /usr/share/tor/defaults-torrc -f /etc/tor/torrc <SNIP>
Whiteboard: (none) => MGA6-64-OKCC: (none) => mageia
Needs advisory, please.
Keywords: (none) => validated_updateCC: (none) => lewyssmith, sysadmin-bugs
Advisory: ======================== Updated tor package fix security vulnerabilities: A protocol-list handling bug that could be used to remotely crash directory authorities with a null-pointer exception (CVE-2018-0490). A bug can be remotely triggered in order to crash relays with a use-after-free pattern (CVE-2018-0491). References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0490 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0491 https://blog.torproject.org/new-stable-tor-releases-security-fixes-and-dos-prevention-03210-03110-02915
Keywords: (none) => advisoryCC: lewyssmith => (none)
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2018-0161.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED