CVE-2023-23589

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-23589
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-23589.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-23589
Downstream
Related
Published
2023-01-14T01:15:15.627Z
Modified
2026-04-02T08:55:43.364629Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002.

References

Affected packages

Git / github.com/torproject/tor

Affected ranges

Type
GIT
Repo
https://github.com/torproject/tor
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
7c1601fb6edd780ffef386936217ede9531c26e6
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "0.4.7.13"
        }
    ]
}
Type
GIT
Repo
https://gitlab.torproject.org/tpo/core/tor
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
a282145b3634547ab84ccd959d0537c021ff7ffc

Affected versions

debian-version-0.*
debian-version-0.0.1+0.0.2pre19-1
debian-version-0.0.1+0.0.2pre20-1
debian-version-0.0.1+0.0.2pre20-2
debian-version-0.0.1+0.0.2pre21-1
debian-version-0.0.1+0.0.2pre22-1
debian-version-0.0.1+0.0.2pre23-1
debian-version-0.0.1+0.0.2pre24-1
debian-version-0.0.1+0.0.2pre25-1
debian-version-0.0.1+0.0.2pre26-1
debian-version-0.0.1+0.0.2pre27-1
debian-version-0.0.2-1
debian-version-0.0.3-1
debian-version-0.0.4-1
debian-version-0.0.5+0.0.6rc2-1
debian-version-0.0.5+0.0.6rc3-1
debian-version-0.0.5+0.0.6rc4-1
debian-version-0.0.5-1
debian-version-0.0.6-1
debian-version-0.0.6.1-1
debian-version-0.0.6.2-1
debian-version-0.0.7+0.0.8rc1-1
debian-version-0.0.7-1
debian-version-0.0.7.1-1
debian-version-0.0.7.2+0.0.8pre2-1
debian-version-0.0.7.2+0.0.8pre3-1
debian-version-0.0.8+0.0.9pre1-1
debian-version-0.0.8+0.0.9pre2-1
debian-version-0.0.8+0.0.9pre3-1
debian-version-0.0.8+0.0.9pre4-1
debian-version-0.0.8+0.0.9pre5-1
debian-version-0.0.8+0.0.9pre5-2
debian-version-0.0.8+0.0.9pre6-1
debian-version-0.0.8+0.0.9rc1-1
debian-version-0.0.8+0.0.9rc2-1
debian-version-0.0.8+0.0.9rc3-1
debian-version-0.0.8+0.0.9rc5-1
debian-version-0.0.8+0.0.9rc6-1
debian-version-0.0.8+0.0.9rc7-1
debian-version-0.0.8-1
debian-version-0.0.9.1-1
debian-version-0.0.9.10-1
debian-version-0.0.9.2-1
debian-version-0.0.9.3-1
debian-version-0.0.9.4-1
debian-version-0.0.9.5-1
debian-version-0.0.9.6-1
debian-version-0.0.9.7-1
debian-version-0.0.9.8-1
debian-version-0.0.9.9-1
debian-version-0.1.0.1-rc-cvs-200503310807-1
debian-version-0.1.0.1-rc-cvs-200504010815-1
debian-version-0.1.0.10-0-pre.1
debian-version-0.1.0.11-0-pre.1
debian-version-0.1.0.11-1
debian-version-0.1.0.12-1
debian-version-0.1.0.13-1
debian-version-0.1.0.14-1
debian-version-0.1.0.14-2
debian-version-0.1.0.15-1
debian-version-0.1.0.16-1
debian-version-0.1.0.17-1
debian-version-0.1.0.2-rc-200504011500-1
debian-version-0.1.0.2-rc-200504011640-1
debian-version-0.1.0.2-rc-cvs-200504031300-1
debian-version-0.1.0.2-rc-cvs-200504061620-1
debian-version-0.1.0.2-rc-cvs-200504062112-1
debian-version-0.1.0.3-rc-200504080730-1
debian-version-0.1.0.3-rc-200504231430-1
debian-version-0.1.0.3-rc-cvs-200504231630-1
debian-version-0.1.0.4-rc-200504232130-1
debian-version-0.1.0.5-rc-200504272000-1
debian-version-0.1.0.7-rc-200505171420-1
debian-version-0.1.0.8-rc-1
debian-version-0.1.0.9-rc-1
debian-version-0.1.1.10-alpha-1
debian-version-0.1.1.11-alpha-1
debian-version-0.1.1.12-alpha-1
debian-version-0.1.1.13-alpha-1
debian-version-0.1.1.14-alpha-1
debian-version-0.1.1.15-rc-1
debian-version-0.1.1.16-rc-1
debian-version-0.1.1.17-rc-1
debian-version-0.1.1.18-rc-1
debian-version-0.1.1.19-rc-1
debian-version-0.1.1.20-1
debian-version-0.1.1.21-1
debian-version-0.1.1.22-1
debian-version-0.1.1.5-alpha-1
debian-version-0.1.1.6-alpha-1
debian-version-0.1.1.6-alpha-2
debian-version-0.1.1.7-alpha-1
debian-version-0.1.1.8-alpha-1
debian-version-0.1.1.9-alpha-1
Other
imported-from-cvs
imported-from-cvs@6890
tor-0.*
tor-0.0.2
tor-0.0.2pre13
tor-0.0.2pre14
tor-0.0.2pre16
tor-0.0.2pre17
tor-0.0.2pre18
tor-0.0.2pre19
tor-0.0.2pre20
tor-0.0.2pre22
tor-0.0.2pre23
tor-0.0.2pre24
tor-0.0.2pre25
tor-0.0.2pre27
tor-0.0.2pre8
tor-0.0.3
tor-0.0.4
tor-0.0.5
tor-0.0.6
tor-0.0.6.1
tor-0.0.6.2
tor-0.0.6incompat-merged
tor-0.0.7
tor-0.0.7.1
tor-0.0.7.2
tor-0.0.7rc1
tor-0.0.8
tor-0.0.8.1
tor-0.0.8pre1
tor-0.0.8pre2
tor-0.0.8pre3
tor-0.0.8rc1
tor-0.0.8rc2
tor-0.0.9
tor-0.0.9.1
tor-0.0.9.10
tor-0.0.9.2
tor-0.0.9.3
tor-0.0.9.5
tor-0.0.9.6
tor-0.0.9.7
tor-0.0.9.9
tor-0.0.9pre1
tor-0.0.9pre2
tor-0.0.9pre3
tor-0.0.9pre4
tor-0.0.9pre5
tor-0.0.9pre6
tor-0.0.9rc1
tor-0.0.9rc2
tor-0.0.9rc3
tor-0.0.9rc4
tor-0.0.9rc5
tor-0.0.9rc6
tor-0.0.9rc7
tor-0.1.0.1-rc
tor-0.1.0.10
tor-0.1.0.11
tor-0.1.0.12
tor-0.1.0.13
tor-0.1.0.14
tor-0.1.0.15
tor-0.1.0.16
tor-0.1.0.17
tor-0.1.0.2-rc
tor-0.1.0.4-rc
tor-0.1.0.5-rc
tor-0.1.0.6-rc
tor-0.1.0.7-rc
tor-0.1.0.9-rc
tor-0.1.1.1-alpha
tor-0.1.1.10-alpha
tor-0.1.1.11-alpha
tor-0.1.1.12-alpha
tor-0.1.1.13-alpha
tor-0.1.1.14-alpha
tor-0.1.1.15-rc
tor-0.1.1.16-rc
tor-0.1.1.17-rc
tor-0.1.1.18-rc
tor-0.1.1.19-rc
tor-0.1.1.2-alpha
tor-0.1.1.20
tor-0.1.1.21
tor-0.1.1.22
tor-0.1.1.23
tor-0.1.1.24
tor-0.1.1.25
tor-0.1.1.26
tor-0.1.1.4-alpha
tor-0.1.1.5-alpha
tor-0.1.1.6-alpha
tor-0.1.1.7-alpha
tor-0.1.1.8-alpha
tor-0.1.1.9-alpha
tor-0.1.2.1-alpha
tor-0.1.2.10-rc
tor-0.1.2.11-rc
tor-0.1.2.12-rc
tor-0.1.2.13
tor-0.1.2.14
tor-0.1.2.15
tor-0.1.2.16
tor-0.1.2.16@11196
tor-0.1.2.17
tor-0.1.2.18
tor-0.1.2.19
tor-0.1.2.2-alpha
tor-0.1.2.3-alpha
tor-0.1.2.4-alpha
tor-0.1.2.5-alpha
tor-0.1.2.6-alpha
tor-0.1.2.7-alpha
tor-0.1.2.8-beta
tor-0.1.2.9-rc
tor-0.2.0.1-alpha
tor-0.2.0.10-alpha
tor-0.2.0.11-alpha
tor-0.2.0.12-alpha
tor-0.2.0.13-alpha
tor-0.2.0.14-alpha
tor-0.2.0.15-alpha
tor-0.2.0.16-alpha
tor-0.2.0.17-alpha
tor-0.2.0.18-alpha
tor-0.2.0.19-alpha
tor-0.2.0.2-alpha
tor-0.2.0.20-rc
tor-0.2.0.21-rc
tor-0.2.0.22-rc
tor-0.2.0.23-rc
tor-0.2.0.24-rc
tor-0.2.0.25-rc
tor-0.2.0.26-rc
tor-0.2.0.27-rc
tor-0.2.0.28-rc
tor-0.2.0.29-rc
tor-0.2.0.3-alpha
tor-0.2.0.30
tor-0.2.0.31
tor-0.2.0.32
tor-0.2.0.33
tor-0.2.0.34
tor-0.2.0.35
tor-0.2.0.4-alpha
tor-0.2.0.4-alpha@11197
tor-0.2.0.5-alpha
tor-0.2.0.6-alpha
tor-0.2.0.7-alpha
tor-0.2.0.8-alpha
tor-0.2.0.9-alpha
tor-0.2.1.1-alpha
tor-0.2.1.10-alpha
tor-0.2.1.11-alpha
tor-0.2.1.12-alpha
tor-0.2.1.13-alpha
tor-0.2.1.14-rc
tor-0.2.1.15-rc
tor-0.2.1.16-rc
tor-0.2.1.17-rc
tor-0.2.1.18
tor-0.2.1.19
tor-0.2.1.2-alpha
tor-0.2.1.20
tor-0.2.1.21
tor-0.2.1.22
tor-0.2.1.23
tor-0.2.1.24
tor-0.2.1.25
tor-0.2.1.26
tor-0.2.1.27
tor-0.2.1.28
tor-0.2.1.29
tor-0.2.1.3-alpha
tor-0.2.1.30
tor-0.2.1.31
tor-0.2.1.32
tor-0.2.1.4-alpha
tor-0.2.1.5-alpha
tor-0.2.1.6-alpha
tor-0.2.1.7-alpha
tor-0.2.1.8-alpha
tor-0.2.1.9-alpha
tor-0.2.2.1-alpha
tor-0.2.2.10-alpha
tor-0.2.2.11-alpha
tor-0.2.2.12-alpha
tor-0.2.2.13-alpha
tor-0.2.2.14-alpha
tor-0.2.2.15-alpha
tor-0.2.2.16-alpha
tor-0.2.2.17-alpha
tor-0.2.2.18-alpha
tor-0.2.2.19-alpha
tor-0.2.2.2-alpha
tor-0.2.2.20-alpha
tor-0.2.2.21-alpha
tor-0.2.2.22-alpha
tor-0.2.2.23-alpha
tor-0.2.2.24-alpha
tor-0.2.2.25-alpha
tor-0.2.2.26-beta
tor-0.2.2.27-beta
tor-0.2.2.28-beta
tor-0.2.2.29-beta
tor-0.2.2.3-alpha
tor-0.2.2.30-rc
tor-0.2.2.31-rc
tor-0.2.2.32
tor-0.2.2.33
tor-0.2.2.34
tor-0.2.2.35
tor-0.2.2.36
tor-0.2.2.37
tor-0.2.2.38
tor-0.2.2.39
tor-0.2.2.4-alpha
tor-0.2.2.5-alpha
tor-0.2.2.6-alpha
tor-0.2.2.7-alpha
tor-0.2.2.8-alpha
tor-0.2.2.9-alpha
tor-0.2.3.1-alpha
tor-0.2.3.10-alpha
tor-0.2.3.11-alpha
tor-0.2.3.12-alpha
tor-0.2.3.13-alpha
tor-0.2.3.14-alpha
tor-0.2.3.15-alpha
tor-0.2.3.16-alpha
tor-0.2.3.17-beta
tor-0.2.3.18-rc
tor-0.2.3.19-rc
tor-0.2.3.2-alpha
tor-0.2.3.20-rc
tor-0.2.3.21-rc
tor-0.2.3.22-rc
tor-0.2.3.23-rc
tor-0.2.3.24-rc
tor-0.2.3.25
tor-0.2.3.3-alpha
tor-0.2.3.4-alpha
tor-0.2.3.5-alpha
tor-0.2.3.6-alpha
tor-0.2.3.7-alpha
tor-0.2.3.8-alpha
tor-0.2.3.9-alpha
tor-0.2.4.1-alpha
tor-0.2.4.10-alpha
tor-0.2.4.11-alpha
tor-0.2.4.12-alpha
tor-0.2.4.13-alpha
tor-0.2.4.14-alpha
tor-0.2.4.15-rc
tor-0.2.4.16-rc
tor-0.2.4.17-rc
tor-0.2.4.18-rc
tor-0.2.4.19
tor-0.2.4.2-alpha
tor-0.2.4.20
tor-0.2.4.21
tor-0.2.4.22
tor-0.2.4.23
tor-0.2.4.24
tor-0.2.4.25
tor-0.2.4.26
tor-0.2.4.27
tor-0.2.4.28
tor-0.2.4.29
tor-0.2.4.3-alpha
tor-0.2.4.4-alpha
tor-0.2.4.5-alpha
tor-0.2.4.6-alpha
tor-0.2.4.7-alpha
tor-0.2.4.8-alpha
tor-0.2.4.9-alpha
tor-0.2.5.1-alpha
tor-0.2.5.10
tor-0.2.5.11
tor-0.2.5.12
tor-0.2.5.13
tor-0.2.5.14
tor-0.2.5.15
tor-0.2.5.16
tor-0.2.5.2-alpha
tor-0.2.5.3-alpha
tor-0.2.5.4-alpha
tor-0.2.5.5-alpha
tor-0.2.5.6-alpha
tor-0.2.5.7-rc
tor-0.2.5.8-rc
tor-0.2.5.9-rc
tor-0.2.6.1-alpha
tor-0.2.6.10
tor-0.2.6.11
tor-0.2.6.12
tor-0.2.6.2-alpha
tor-0.2.6.3-alpha
tor-0.2.6.4-rc
tor-0.2.6.5-rc
tor-0.2.6.6
tor-0.2.6.7
tor-0.2.6.8
tor-0.2.6.9
tor-0.2.7.0-root
tor-0.2.7.1-alpha
tor-0.2.7.2-alpha
tor-0.2.7.3-rc
tor-0.2.7.4-rc
tor-0.2.7.5
tor-0.2.7.6
tor-0.2.7.7
tor-0.2.7.8
tor-0.2.8.1-alpha
tor-0.2.8.10
tor-0.2.8.11
tor-0.2.8.12
tor-0.2.8.13
tor-0.2.8.14
tor-0.2.8.15
tor-0.2.8.16
tor-0.2.8.17
tor-0.2.8.2-alpha
tor-0.2.8.3-alpha
tor-0.2.8.4-rc
tor-0.2.8.5-rc
tor-0.2.8.6
tor-0.2.8.7
tor-0.2.8.8
tor-0.2.8.9
tor-0.2.9.0-root
tor-0.2.9.1-alpha
tor-0.2.9.10
tor-0.2.9.11
tor-0.2.9.12
tor-0.2.9.13
tor-0.2.9.14
tor-0.2.9.15
tor-0.2.9.16
tor-0.2.9.17
tor-0.2.9.2-alpha
tor-0.2.9.3-alpha
tor-0.2.9.4-alpha
tor-0.2.9.5-alpha
tor-0.2.9.6-rc
tor-0.2.9.7-rc
tor-0.2.9.8
tor-0.2.9.9
tor-0.3.0.1-alpha
tor-0.3.0.10
tor-0.3.0.11
tor-0.3.0.12
tor-0.3.0.13
tor-0.3.0.2-alpha
tor-0.3.0.3-alpha
tor-0.3.0.4-rc
tor-0.3.0.5-rc
tor-0.3.0.6
tor-0.3.0.7
tor-0.3.0.8
tor-0.3.0.9
tor-0.3.1.1-alpha
tor-0.3.1.10
tor-0.3.1.2-alpha
tor-0.3.1.3-alpha
tor-0.3.1.4-alpha
tor-0.3.1.5-alpha
tor-0.3.1.6-rc
tor-0.3.1.7
tor-0.3.1.8
tor-0.3.1.9
tor-0.3.2.1-alpha
tor-0.3.2.10
tor-0.3.2.11
tor-0.3.2.12
tor-0.3.2.2-alpha
tor-0.3.2.3-alpha
tor-0.3.2.4-alpha
tor-0.3.2.5-alpha
tor-0.3.2.6-alpha
tor-0.3.2.7-rc
tor-0.3.2.8-rc
tor-0.3.2.9
tor-0.3.3.0-alpha-dev
tor-0.3.3.1-alpha
tor-0.3.3.10
tor-0.3.3.11
tor-0.3.3.12
tor-0.3.3.2-alpha
tor-0.3.3.3-alpha
tor-0.3.3.4-alpha
tor-0.3.3.5-rc
tor-0.3.3.6
tor-0.3.3.7
tor-0.3.3.8
tor-0.3.3.9
tor-0.3.4.0-alpha-dev
tor-0.3.4.1-alpha
tor-0.3.4.10
tor-0.3.4.11
tor-0.3.4.2-alpha
tor-0.3.4.3-alpha
tor-0.3.4.4-rc
tor-0.3.4.5-rc
tor-0.3.4.6-rc
tor-0.3.4.7-rc
tor-0.3.4.8
tor-0.3.4.9
tor-0.3.5.0-alpha-dev
tor-0.3.5.1-alpha
tor-0.3.5.10
tor-0.3.5.11
tor-0.3.5.12
tor-0.3.5.13
tor-0.3.5.14
tor-0.3.5.15
tor-0.3.5.16
tor-0.3.5.17
tor-0.3.5.18
tor-0.3.5.2-alpha
tor-0.3.5.3-alpha
tor-0.3.5.4-alpha
tor-0.3.5.5-alpha
tor-0.3.5.6-rc
tor-0.3.5.7
tor-0.3.5.8
tor-0.3.5.9
tor-0.4.0.1-alpha
tor-0.4.0.2-alpha
tor-0.4.0.3-alpha
tor-0.4.0.4-rc
tor-0.4.0.5
tor-0.4.0.6
tor-0.4.1.0-alpha-dev
tor-0.4.1.1-alpha
tor-0.4.1.2-alpha
tor-0.4.1.3-alpha
tor-0.4.1.4-rc
tor-0.4.1.5
tor-0.4.1.6
tor-0.4.1.7
tor-0.4.1.8
tor-0.4.1.9
tor-0.4.2.1-alpha
tor-0.4.2.2-alpha
tor-0.4.2.3-alpha
tor-0.4.2.4-rc
tor-0.4.2.5
tor-0.4.2.6
tor-0.4.2.7
tor-0.4.2.8
tor-0.4.3.0-alpha-dev
tor-0.4.3.1-alpha
tor-0.4.3.2-alpha
tor-0.4.3.3-alpha
tor-0.4.3.4-rc
tor-0.4.3.5
tor-0.4.3.6
tor-0.4.3.7
tor-0.4.3.8
tor-0.4.4.0-alpha-dev
tor-0.4.4.1-alpha
tor-0.4.4.2-alpha
tor-0.4.4.3-alpha
tor-0.4.4.4-rc
tor-0.4.4.5
tor-0.4.4.6
tor-0.4.4.7
tor-0.4.4.8
tor-0.4.4.9
tor-0.4.5.0-alpha-dev
tor-0.4.5.1-alpha
tor-0.4.5.10
tor-0.4.5.11
tor-0.4.5.12
tor-0.4.5.13
tor-0.4.5.14
tor-0.4.5.15
tor-0.4.5.16
tor-0.4.5.2-alpha
tor-0.4.5.3-rc
tor-0.4.5.4-rc
tor-0.4.5.5-rc
tor-0.4.5.6
tor-0.4.5.7
tor-0.4.5.8
tor-0.4.5.9
tor-0.4.6.0-alpha-dev
tor-0.4.6.1-alpha
tor-0.4.6.10
tor-0.4.6.11
tor-0.4.6.12
tor-0.4.6.2-alpha
tor-0.4.6.3-rc
tor-0.4.6.4-rc
tor-0.4.6.5
tor-0.4.6.6
tor-0.4.6.7
tor-0.4.6.8
tor-0.4.6.9
tor-0.4.7.0-alpha-dev
tor-0.4.7.1-alpha
tor-0.4.7.10
tor-0.4.7.11
tor-0.4.7.12
tor-0.4.7.2-alpha
tor-0.4.7.3-alpha
tor-0.4.7.4-alpha
tor-0.4.7.5-alpha
tor-0.4.7.6-rc
tor-0.4.7.7
tor-0.4.7.8
tor-0.4.7.9
tor-0.4.8.0-alpha-dev
tor-0.4.8.1-alpha

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-23589.json"
unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "10.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "11.0"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "36"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "37"
            }
        ]
    }
]
vanir_signatures 
[
    {
        "deprecated": false,
        "signature_type": "Line",
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "307772956096745468774975246938715356079",
                "147044844402957694550310823875177869918",
                "93200883094845881502080359252066234921",
                "305305595534529948475529125665439507443"
            ],
            "threshold": 0.9
        },
        "source": "https://gitlab.torproject.org/tpo/core/tor@a282145b3634547ab84ccd959d0537c021ff7ffc",
        "id": "CVE-2023-23589-251611a3",
        "target": {
            "file": "src/core/proto/proto_socks.c"
        }
    },
    {
        "deprecated": false,
        "signature_type": "Function",
        "signature_version": "v1",
        "digest": {
            "function_hash": "98386025198757503419272516431704592524",
            "length": 1009.0
        },
        "source": "https://gitlab.torproject.org/tpo/core/tor@a282145b3634547ab84ccd959d0537c021ff7ffc",
        "id": "CVE-2023-23589-7ff62677",
        "target": {
            "file": "src/core/proto/proto_socks.c",
            "function": "process_socks4_request"
        }
    }
]