Unrated severityNVD Advisory· Published Jan 14, 2023· Updated Apr 7, 2025
CVE-2023-23589
CVE-2023-23589
Description
The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
7- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IYOLTP6HQO2HPXUYKOR7P5YYYN7CINQQ/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZMY4FWXYKP3MDXTZ3EJ7XJVGBCKBK2XL/mitrevendor-advisory
- security.gentoo.org/glsa/202305-11mitrevendor-advisory
- www.debian.org/security/2023/dsa-5320mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/01/msg00026.htmlmitremailing-list
- gitlab.torproject.org/tpo/core/tor/-/commit/a282145b3634547ab84ccd959d0537c021ff7ffcmitre
- gitlab.torproject.org/tpo/core/tor/-/issues/40730mitre
News mentions
0No linked articles in our index yet.