[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] CVE-2015-7547 Tor network stats

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] CVE-2015-7547 Tor network stats
From: nusenu <nusenu@xxxxxxxxxxxxxxx>
Date: Mon, 22 Feb 2016 22:44:19 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 22 Feb 2016 17:44:43 -0500
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=openmailbox.org; s=openmailbox; t=1456181072; bh=69zEfLHvu5BOYC2W7e7Czyrl7P04V6eekrmanXliKXQ=; h=To:From:Subject:Date:From; b=oMuT76GQ20UWONCjCFu66Fq4mHth4NXV7rk0MonOTKLgfTtMI+XE4+3dVUNdJWY0h qqErVuUtBXktvv72yf12HakZiF0NjQZvMd+TGOTJGDN1v1h8ZYGQpFfiK1NNmMWctj jRZeBBzMnhN1r37evkPhPFlFXK43VpUjZahNEurg=
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=openmailbox.org; s=openmailbox; t=1456181062; bh=69zEfLHvu5BOYC2W7e7Czyrl7P04V6eekrmanXliKXQ=; h=To:From:Subject:Date:From; b=E+VeArnnafL79LH8Oq4B94oRJVg6QHVkZvrcyKzVp7rHdyhMXou2IHxX9EoPIZH50 ThYdxONUfqzSnMfymQ1Vwyit443F22Ye+YYSYM9Gu9mb+wzM7QV02AsXH0x4B4ZxEu rN3w+hf7PvFvFvQP3e2cG74v3VW4t2Qk5RBij22w=
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi,

if we assume for simplicity that every relay running Linux that has not
rebooted since 2016-02-16 is vulnerable to CVE-2015-7547, than these are
the current stats (optimistic, because we assume that everyone that
rebooted did also update).

Vulnerable relays:

+------------+------------------+-----------------+
| cwfraction | guardprobability | exitprobability |
+------------+------------------+-----------------+
|      0.586 |            0.639 |           0.518 |
+------------+------------------+-----------------+
(1=100%)

Apply patches and reboot.

Debian
https://www.debian.org/security/2016/dsa-3481

RHEL/CentOS
https://rhn.redhat.com/errata/RHSA-2016-0176.html

Ubuntu
http://www.ubuntu.com/usn/usn-2900-1/

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] CVE-2015-7547 Tor network stats
  - From: Josef 'veloc1ty' Stautner
- Re: [tor-relays] CVE-2015-7547 Tor network stats
  - From: SuperSluether

Prev by Author: Re: [tor-relays] does the Tor network scale well ?
Next by Author: Re: [tor-relays] CVE-2015-7547 Tor network stats
Previous by thread: Re: [tor-relays] does the Tor network scale well ?
Next by thread: Re: [tor-relays] CVE-2015-7547 Tor network stats
Index(es):
- Author
- Thread