Test ID:	1.3.6.1.4.1.25623.1.0.70776
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201110-13 (Tor)
Summary:	The remote host is missing updates announced in;advisory GLSA 201110-13.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 201110-13. Vulnerability Insight: Multiple vulnerabilities were found in Tor, the most severe of which may allow a remote attacker to execute arbitrary code. Solution: All Tor users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/tor-0.2.1.30' NOTE: This is a legacy GLSA. Updates for all affected architectures are available since April 2, 2011. It is likely that your system is already no longer affected by this issue. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0015 1024980 http://www.securitytracker.com/id?1024980 42905 http://secunia.com/advisories/42905 42907 http://secunia.com/advisories/42907 45832 http://www.securityfocus.com/bid/45832 ADV-2011-0131 http://www.vupen.com/english/advisories/2011/0131 ADV-2011-0132 http://www.vupen.com/english/advisories/2011/0132 DSA-2148 http://www.debian.org/security/2011/dsa-2148 [or-announce] 20110117 Tor 0.2.1.29 is released (security patches) http://archives.seul.org/or/announce/Jan-2011/msg00000.html [oss-security] 20110118 Re: CVE request: tor http://www.openwall.com/lists/oss-security/2011/01/18/7 http://blog.torproject.org/blog/tor-02129-released-security-patches https://gitweb.torproject.org/tor.git/blob/refs/heads/release-0.2.2:/ChangeLog https://trac.torproject.org/projects/tor/ticket/2324 Common Vulnerability Exposure (CVE) ID: CVE-2011-0016 https://trac.torproject.org/projects/tor/ticket/2384 https://trac.torproject.org/projects/tor/ticket/2385 Common Vulnerability Exposure (CVE) ID: CVE-2011-0427 BugTraq ID: 45832 Debian Security Information: DSA-2148 (Google Search) XForce ISS Database: tor-unspec-bo(64748) https://exchange.xforce.ibmcloud.com/vulnerabilities/64748 Common Vulnerability Exposure (CVE) ID: CVE-2011-0490 BugTraq ID: 45953 http://www.securityfocus.com/bid/45953 XForce ISS Database: tor-libevent-dos(64889) https://exchange.xforce.ibmcloud.com/vulnerabilities/64889 Common Vulnerability Exposure (CVE) ID: CVE-2011-0491 XForce ISS Database: tor-torrealloc-dos(64888) https://exchange.xforce.ibmcloud.com/vulnerabilities/64888 Common Vulnerability Exposure (CVE) ID: CVE-2011-0492 XForce ISS Database: tor-blobs-dos(64867) https://exchange.xforce.ibmcloud.com/vulnerabilities/64867 Common Vulnerability Exposure (CVE) ID: CVE-2011-0493 XForce ISS Database: tor-routercache-dos(64864) https://exchange.xforce.ibmcloud.com/vulnerabilities/64864 Common Vulnerability Exposure (CVE) ID: CVE-2011-1924 43548 http://secunia.com/advisories/43548 44862 http://secunia.com/advisories/44862 46618 http://www.securityfocus.com/bid/46618 FEDORA-2011-7972 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061258.html [tor-announce] 20110228 Tor 0.2.1.30 is released https://lists.torproject.org/pipermail/tor-announce/2011-February/000000.html https://bugzilla.redhat.com/show_bug.cgi?id=705192 https://bugzilla.redhat.com/show_bug.cgi?id=705194 https://gitweb.torproject.org/tor.git/commit/43414eb98821d3b5c6c65181d7545ce938f82c8e
Copyright	Copyright (C) 2012 E-Soft Inc.

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.