{"id":"CVE-2023-23589","details":"The SafeSocks option in Tor before 0.4.7.13 has a logic error in which the unsafe SOCKS4 protocol can be used but not the safe SOCKS4a protocol, aka TROVE-2022-002.","modified":"2026-04-02T08:55:43.364629Z","published":"2023-01-14T01:15:15.627Z","related":["MGASA-2023-0017"],"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IYOLTP6HQO2HPXUYKOR7P5YYYN7CINQQ/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZMY4FWXYKP3MDXTZ3EJ7XJVGBCKBK2XL/"},{"type":"ADVISORY","url":"https://gitlab.torproject.org/tpo/core/tor/-/raw/release-0.4.7/ReleaseNotes"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2023/01/msg00026.html"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202305-11"},{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5320"},{"type":"FIX","url":"https://gitlab.torproject.org/tpo/core/tor/-/commit/a282145b3634547ab84ccd959d0537c021ff7ffc"},{"type":"FIX","url":"https://gitlab.torproject.org/tpo/core/tor/-/issues/40730"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/torproject/tor","events":[{"introduced":"0"},{"fixed":"7c1601fb6edd780ffef386936217ede9531c26e6"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.4.7.13"}]}},{"type":"GIT","repo":"https://gitlab.torproject.org/tpo/core/tor","events":[{"introduced":"0"},{"fixed":"a282145b3634547ab84ccd959d0537c021ff7ffc"}]}],"versions":["debian-version-0.0.1+0.0.2pre19-1","debian-version-0.0.1+0.0.2pre20-1","debian-version-0.0.1+0.0.2pre20-2","debian-version-0.0.1+0.0.2pre21-1","debian-version-0.0.1+0.0.2pre22-1","debian-version-0.0.1+0.0.2pre23-1","debian-version-0.0.1+0.0.2pre24-1","debian-version-0.0.1+0.0.2pre25-1","debian-version-0.0.1+0.0.2pre26-1","debian-version-0.0.1+0.0.2pre27-1","debian-version-0.0.2-1","debian-version-0.0.3-1","debian-version-0.0.4-1","debian-version-0.0.5+0.0.6rc2-1","debian-version-0.0.5+0.0.6rc3-1","debian-version-0.0.5+0.0.6rc4-1","debian-version-0.0.5-1","debian-version-0.0.6-1","debian-version-0.0.6.1-1","debian-version-0.0.6.2-1","debian-version-0.0.7+0.0.8rc1-1","debian-version-0.0.7-1","debian-version-0.0.7.1-1","debian-version-0.0.7.2+0.0.8pre2-1","debian-version-0.0.7.2+0.0.8pre3-1","debian-version-0.0.8+0.0.9pre1-1","debian-version-0.0.8+0.0.9pre2-1","debian-version-0.0.8+0.0.9pre3-1","debian-version-0.0.8+0.0.9pre4-1","debian-version-0.0.8+0.0.9pre5-1","debian-version-0.0.8+0.0.9pre5-2","debian-version-0.0.8+0.0.9pre6-1","debian-version-0.0.8+0.0.9rc1-1","debian-version-0.0.8+0.0.9rc2-1","debian-version-0.0.8+0.0.9rc3-1","debian-version-0.0.8+0.0.9rc5-1","debian-version-0.0.8+0.0.9rc6-1","debian-version-0.0.8+0.0.9rc7-1","debian-version-0.0.8-1","debian-version-0.0.9.1-1","debian-version-0.0.9.10-1","debian-version-0.0.9.2-1","debian-version-0.0.9.3-1","debian-version-0.0.9.4-1","debian-version-0.0.9.5-1","debian-version-0.0.9.6-1","debian-version-0.0.9.7-1","debian-version-0.0.9.8-1","debian-version-0.0.9.9-1","debian-version-0.1.0.1-rc-cvs-200503310807-1","debian-version-0.1.0.1-rc-cvs-200504010815-1","debian-version-0.1.0.10-0-pre.1","debian-version-0.1.0.11-0-pre.1","debian-version-0.1.0.11-1","debian-version-0.1.0.12-1","debian-version-0.1.0.13-1","debian-version-0.1.0.14-1","debian-version-0.1.0.14-2","debian-version-0.1.0.15-1","debian-version-0.1.0.16-1","debian-version-0.1.0.17-1","debian-version-0.1.0.2-rc-200504011500-1","debian-version-0.1.0.2-rc-200504011640-1","debian-version-0.1.0.2-rc-cvs-200504031300-1","debian-version-0.1.0.2-rc-cvs-200504061620-1","debian-version-0.1.0.2-rc-cvs-200504062112-1","debian-version-0.1.0.3-rc-200504080730-1","debian-version-0.1.0.3-rc-200504231430-1","debian-version-0.1.0.3-rc-cvs-200504231630-1","debian-version-0.1.0.4-rc-200504232130-1","debian-version-0.1.0.5-rc-200504272000-1","debian-version-0.1.0.7-rc-200505171420-1","debian-version-0.1.0.8-rc-1","debian-version-0.1.0.9-rc-1","debian-version-0.1.1.10-alpha-1","debian-version-0.1.1.11-alpha-1","debian-version-0.1.1.12-alpha-1","debian-version-0.1.1.13-alpha-1","debian-version-0.1.1.14-alpha-1","debian-version-0.1.1.15-rc-1","debian-version-0.1.1.16-rc-1","debian-version-0.1.1.17-rc-1","debian-version-0.1.1.18-rc-1","debian-version-0.1.1.19-rc-1","debian-version-0.1.1.20-1","debian-version-0.1.1.21-1","debian-version-0.1.1.22-1","debian-version-0.1.1.5-alpha-1","debian-version-0.1.1.6-alpha-1","debian-version-0.1.1.6-alpha-2","debian-version-0.1.1.7-alpha-1","debian-version-0.1.1.8-alpha-1","debian-version-0.1.1.9-alpha-1","imported-from-cvs","imported-from-cvs@6890","tor-0.0.2","tor-0.0.2pre13","tor-0.0.2pre14","tor-0.0.2pre16","tor-0.0.2pre17","tor-0.0.2pre18","tor-0.0.2pre19","tor-0.0.2pre20","tor-0.0.2pre22","tor-0.0.2pre23","tor-0.0.2pre24","tor-0.0.2pre25","tor-0.0.2pre27","tor-0.0.2pre8","tor-0.0.3","tor-0.0.4","tor-0.0.5","tor-0.0.6","tor-0.0.6.1","tor-0.0.6.2","tor-0.0.6incompat-merged","tor-0.0.7","tor-0.0.7.1","tor-0.0.7.2","tor-0.0.7rc1","tor-0.0.8","tor-0.0.8.1","tor-0.0.8pre1","tor-0.0.8pre2","tor-0.0.8pre3","tor-0.0.8rc1","tor-0.0.8rc2","tor-0.0.9","tor-0.0.9.1","tor-0.0.9.10","tor-0.0.9.2","tor-0.0.9.3","tor-0.0.9.5","tor-0.0.9.6","tor-0.0.9.7","tor-0.0.9.9","tor-0.0.9pre1","tor-0.0.9pre2","tor-0.0.9pre3","tor-0.0.9pre4","tor-0.0.9pre5","tor-0.0.9pre6","tor-0.0.9rc1","tor-0.0.9rc2","tor-0.0.9rc3","tor-0.0.9rc4","tor-0.0.9rc5","tor-0.0.9rc6","tor-0.0.9rc7","tor-0.1.0.1-rc","tor-0.1.0.10","tor-0.1.0.11","tor-0.1.0.12","tor-0.1.0.13","tor-0.1.0.14","tor-0.1.0.15","tor-0.1.0.16","tor-0.1.0.17","tor-0.1.0.2-rc","tor-0.1.0.4-rc","tor-0.1.0.5-rc","tor-0.1.0.6-rc","tor-0.1.0.7-rc","tor-0.1.0.9-rc","tor-0.1.1.1-alpha","tor-0.1.1.10-alpha","tor-0.1.1.11-alpha","tor-0.1.1.12-alpha","tor-0.1.1.13-alpha","tor-0.1.1.14-alpha","tor-0.1.1.15-rc","tor-0.1.1.16-rc","tor-0.1.1.17-rc","tor-0.1.1.18-rc","tor-0.1.1.19-rc","tor-0.1.1.2-alpha","tor-0.1.1.20","tor-0.1.1.21","tor-0.1.1.22","tor-0.1.1.23","tor-0.1.1.24","tor-0.1.1.25","tor-0.1.1.26","tor-0.1.1.4-alpha","tor-0.1.1.5-alpha","tor-0.1.1.6-alpha","tor-0.1.1.7-alpha","tor-0.1.1.8-alpha","tor-0.1.1.9-alpha","tor-0.1.2.1-alpha","tor-0.1.2.10-rc","tor-0.1.2.11-rc","tor-0.1.2.12-rc","tor-0.1.2.13","tor-0.1.2.14","tor-0.1.2.15","tor-0.1.2.16","tor-0.1.2.16@11196","tor-0.1.2.17","tor-0.1.2.18","tor-0.1.2.19","tor-0.1.2.2-alpha","tor-0.1.2.3-alpha","tor-0.1.2.4-alpha","tor-0.1.2.5-alpha","tor-0.1.2.6-alpha","tor-0.1.2.7-alpha","tor-0.1.2.8-beta","tor-0.1.2.9-rc","tor-0.2.0.1-alpha","tor-0.2.0.10-alpha","tor-0.2.0.11-alpha","tor-0.2.0.12-alpha","tor-0.2.0.13-alpha","tor-0.2.0.14-alpha","tor-0.2.0.15-alpha","tor-0.2.0.16-alpha","tor-0.2.0.17-alpha","tor-0.2.0.18-alpha","tor-0.2.0.19-alpha","tor-0.2.0.2-alpha","tor-0.2.0.20-rc","tor-0.2.0.21-rc","tor-0.2.0.22-rc","tor-0.2.0.23-rc","tor-0.2.0.24-rc","tor-0.2.0.25-rc","tor-0.2.0.26-rc","tor-0.2.0.27-rc","tor-0.2.0.28-rc","tor-0.2.0.29-rc","tor-0.2.0.3-alpha","tor-0.2.0.30","tor-0.2.0.31","tor-0.2.0.32","tor-0.2.0.33","tor-0.2.0.34","tor-0.2.0.35","tor-0.2.0.4-alpha","tor-0.2.0.4-alpha@11197","tor-0.2.0.5-alpha","tor-0.2.0.6-alpha","tor-0.2.0.7-alpha","tor-0.2.0.8-alpha","tor-0.2.0.9-alpha","tor-0.2.1.1-alpha","tor-0.2.1.10-alpha","tor-0.2.1.11-alpha","tor-0.2.1.12-alpha","tor-0.2.1.13-alpha","tor-0.2.1.14-rc","tor-0.2.1.15-rc","tor-0.2.1.16-rc","tor-0.2.1.17-rc","tor-0.2.1.18","tor-0.2.1.19","tor-0.2.1.2-alpha","tor-0.2.1.20","tor-0.2.1.21","tor-0.2.1.22","tor-0.2.1.23","tor-0.2.1.24","tor-0.2.1.25","tor-0.2.1.26","tor-0.2.1.27","tor-0.2.1.28","tor-0.2.1.29","tor-0.2.1.3-alpha","tor-0.2.1.30","tor-0.2.1.31","tor-0.2.1.32","tor-0.2.1.4-alpha","tor-0.2.1.5-alpha","tor-0.2.1.6-alpha","tor-0.2.1.7-alpha","tor-0.2.1.8-alpha","tor-0.2.1.9-alpha","tor-0.2.2.1-alpha","tor-0.2.2.10-alpha","tor-0.2.2.11-alpha","tor-0.2.2.12-alpha","tor-0.2.2.13-alpha","tor-0.2.2.14-alpha","tor-0.2.2.15-alpha","tor-0.2.2.16-alpha","tor-0.2.2.17-alpha","tor-0.2.2.18-alpha","tor-0.2.2.19-alpha","tor-0.2.2.2-alpha","tor-0.2.2.20-alpha","tor-0.2.2.21-alpha","tor-0.2.2.22-alpha","tor-0.2.2.23-alpha","tor-0.2.2.24-alpha","tor-0.2.2.25-alpha","tor-0.2.2.26-beta","tor-0.2.2.27-beta","tor-0.2.2.28-beta","tor-0.2.2.29-beta","tor-0.2.2.3-alpha","tor-0.2.2.30-rc","tor-0.2.2.31-rc","tor-0.2.2.32","tor-0.2.2.33","tor-0.2.2.34","tor-0.2.2.35","tor-0.2.2.36","tor-0.2.2.37","tor-0.2.2.38","tor-0.2.2.39","tor-0.2.2.4-alpha","tor-0.2.2.5-alpha","tor-0.2.2.6-alpha","tor-0.2.2.7-alpha","tor-0.2.2.8-alpha","tor-0.2.2.9-alpha","tor-0.2.3.1-alpha","tor-0.2.3.10-alpha","tor-0.2.3.11-alpha","tor-0.2.3.12-alpha","tor-0.2.3.13-alpha","tor-0.2.3.14-alpha","tor-0.2.3.15-alpha","tor-0.2.3.16-alpha","tor-0.2.3.17-beta","tor-0.2.3.18-rc","tor-0.2.3.19-rc","tor-0.2.3.2-alpha","tor-0.2.3.20-rc","tor-0.2.3.21-rc","tor-0.2.3.22-rc","tor-0.2.3.23-rc","tor-0.2.3.24-rc","tor-0.2.3.25","tor-0.2.3.3-alpha","tor-0.2.3.4-alpha","tor-0.2.3.5-alpha","tor-0.2.3.6-alpha","tor-0.2.3.7-alpha","tor-0.2.3.8-alpha","tor-0.2.3.9-alpha","tor-0.2.4.1-alpha","tor-0.2.4.10-alpha","tor-0.2.4.11-alpha","tor-0.2.4.12-alpha","tor-0.2.4.13-alpha","tor-0.2.4.14-alpha","tor-0.2.4.15-rc","tor-0.2.4.16-rc","tor-0.2.4.17-rc","tor-0.2.4.18-rc","tor-0.2.4.19","tor-0.2.4.2-alpha","tor-0.2.4.20","tor-0.2.4.21","tor-0.2.4.22","tor-0.2.4.23","tor-0.2.4.24","tor-0.2.4.25","tor-0.2.4.26","tor-0.2.4.27","tor-0.2.4.28","tor-0.2.4.29","tor-0.2.4.3-alpha","tor-0.2.4.4-alpha","tor-0.2.4.5-alpha","tor-0.2.4.6-alpha","tor-0.2.4.7-alpha","tor-0.2.4.8-alpha","tor-0.2.4.9-alpha","tor-0.2.5.1-alpha","tor-0.2.5.10","tor-0.2.5.11","tor-0.2.5.12","tor-0.2.5.13","tor-0.2.5.14","tor-0.2.5.15","tor-0.2.5.16","tor-0.2.5.2-alpha","tor-0.2.5.3-alpha","tor-0.2.5.4-alpha","tor-0.2.5.5-alpha","tor-0.2.5.6-alpha","tor-0.2.5.7-rc","tor-0.2.5.8-rc","tor-0.2.5.9-rc","tor-0.2.6.1-alpha","tor-0.2.6.10","tor-0.2.6.11","tor-0.2.6.12","tor-0.2.6.2-alpha","tor-0.2.6.3-alpha","tor-0.2.6.4-rc","tor-0.2.6.5-rc","tor-0.2.6.6","tor-0.2.6.7","tor-0.2.6.8","tor-0.2.6.9","tor-0.2.7.0-root","tor-0.2.7.1-alpha","tor-0.2.7.2-alpha","tor-0.2.7.3-rc","tor-0.2.7.4-rc","tor-0.2.7.5","tor-0.2.7.6","tor-0.2.7.7","tor-0.2.7.8","tor-0.2.8.1-alpha","tor-0.2.8.10","tor-0.2.8.11","tor-0.2.8.12","tor-0.2.8.13","tor-0.2.8.14","tor-0.2.8.15","tor-0.2.8.16","tor-0.2.8.17","tor-0.2.8.2-alpha","tor-0.2.8.3-alpha","tor-0.2.8.4-rc","tor-0.2.8.5-rc","tor-0.2.8.6","tor-0.2.8.7","tor-0.2.8.8","tor-0.2.8.9","tor-0.2.9.0-root","tor-0.2.9.1-alpha","tor-0.2.9.10","tor-0.2.9.11","tor-0.2.9.12","tor-0.2.9.13","tor-0.2.9.14","tor-0.2.9.15","tor-0.2.9.16","tor-0.2.9.17","tor-0.2.9.2-alpha","tor-0.2.9.3-alpha","tor-0.2.9.4-alpha","tor-0.2.9.5-alpha","tor-0.2.9.6-rc","tor-0.2.9.7-rc","tor-0.2.9.8","tor-0.2.9.9","tor-0.3.0.1-alpha","tor-0.3.0.10","tor-0.3.0.11","tor-0.3.0.12","tor-0.3.0.13","tor-0.3.0.2-alpha","tor-0.3.0.3-alpha","tor-0.3.0.4-rc","tor-0.3.0.5-rc","tor-0.3.0.6","tor-0.3.0.7","tor-0.3.0.8","tor-0.3.0.9","tor-0.3.1.1-alpha","tor-0.3.1.10","tor-0.3.1.2-alpha","tor-0.3.1.3-alpha","tor-0.3.1.4-alpha","tor-0.3.1.5-alpha","tor-0.3.1.6-rc","tor-0.3.1.7","tor-0.3.1.8","tor-0.3.1.9","tor-0.3.2.1-alpha","tor-0.3.2.10","tor-0.3.2.11","tor-0.3.2.12","tor-0.3.2.2-alpha","tor-0.3.2.3-alpha","tor-0.3.2.4-alpha","tor-0.3.2.5-alpha","tor-0.3.2.6-alpha","tor-0.3.2.7-rc","tor-0.3.2.8-rc","tor-0.3.2.9","tor-0.3.3.0-alpha-dev","tor-0.3.3.1-alpha","tor-0.3.3.10","tor-0.3.3.11","tor-0.3.3.12","tor-0.3.3.2-alpha","tor-0.3.3.3-alpha","tor-0.3.3.4-alpha","tor-0.3.3.5-rc","tor-0.3.3.6","tor-0.3.3.7","tor-0.3.3.8","tor-0.3.3.9","tor-0.3.4.0-alpha-dev","tor-0.3.4.1-alpha","tor-0.3.4.10","tor-0.3.4.11","tor-0.3.4.2-alpha","tor-0.3.4.3-alpha","tor-0.3.4.4-rc","tor-0.3.4.5-rc","tor-0.3.4.6-rc","tor-0.3.4.7-rc","tor-0.3.4.8","tor-0.3.4.9","tor-0.3.5.0-alpha-dev","tor-0.3.5.1-alpha","tor-0.3.5.10","tor-0.3.5.11","tor-0.3.5.12","tor-0.3.5.13","tor-0.3.5.14","tor-0.3.5.15","tor-0.3.5.16","tor-0.3.5.17","tor-0.3.5.18","tor-0.3.5.2-alpha","tor-0.3.5.3-alpha","tor-0.3.5.4-alpha","tor-0.3.5.5-alpha","tor-0.3.5.6-rc","tor-0.3.5.7","tor-0.3.5.8","tor-0.3.5.9","tor-0.4.0.1-alpha","tor-0.4.0.2-alpha","tor-0.4.0.3-alpha","tor-0.4.0.4-rc","tor-0.4.0.5","tor-0.4.0.6","tor-0.4.1.0-alpha-dev","tor-0.4.1.1-alpha","tor-0.4.1.2-alpha","tor-0.4.1.3-alpha","tor-0.4.1.4-rc","tor-0.4.1.5","tor-0.4.1.6","tor-0.4.1.7","tor-0.4.1.8","tor-0.4.1.9","tor-0.4.2.1-alpha","tor-0.4.2.2-alpha","tor-0.4.2.3-alpha","tor-0.4.2.4-rc","tor-0.4.2.5","tor-0.4.2.6","tor-0.4.2.7","tor-0.4.2.8","tor-0.4.3.0-alpha-dev","tor-0.4.3.1-alpha","tor-0.4.3.2-alpha","tor-0.4.3.3-alpha","tor-0.4.3.4-rc","tor-0.4.3.5","tor-0.4.3.6","tor-0.4.3.7","tor-0.4.3.8","tor-0.4.4.0-alpha-dev","tor-0.4.4.1-alpha","tor-0.4.4.2-alpha","tor-0.4.4.3-alpha","tor-0.4.4.4-rc","tor-0.4.4.5","tor-0.4.4.6","tor-0.4.4.7","tor-0.4.4.8","tor-0.4.4.9","tor-0.4.5.0-alpha-dev","tor-0.4.5.1-alpha","tor-0.4.5.10","tor-0.4.5.11","tor-0.4.5.12","tor-0.4.5.13","tor-0.4.5.14","tor-0.4.5.15","tor-0.4.5.16","tor-0.4.5.2-alpha","tor-0.4.5.3-rc","tor-0.4.5.4-rc","tor-0.4.5.5-rc","tor-0.4.5.6","tor-0.4.5.7","tor-0.4.5.8","tor-0.4.5.9","tor-0.4.6.0-alpha-dev","tor-0.4.6.1-alpha","tor-0.4.6.10","tor-0.4.6.11","tor-0.4.6.12","tor-0.4.6.2-alpha","tor-0.4.6.3-rc","tor-0.4.6.4-rc","tor-0.4.6.5","tor-0.4.6.6","tor-0.4.6.7","tor-0.4.6.8","tor-0.4.6.9","tor-0.4.7.0-alpha-dev","tor-0.4.7.1-alpha","tor-0.4.7.10","tor-0.4.7.11","tor-0.4.7.12","tor-0.4.7.2-alpha","tor-0.4.7.3-alpha","tor-0.4.7.4-alpha","tor-0.4.7.5-alpha","tor-0.4.7.6-rc","tor-0.4.7.7","tor-0.4.7.8","tor-0.4.7.9","tor-0.4.8.0-alpha-dev","tor-0.4.8.1-alpha"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-23589.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]},{"events":[{"introduced":"0"},{"last_affected":"36"}]},{"events":[{"introduced":"0"},{"last_affected":"37"}]}],"vanir_signatures":[{"source":"https://gitlab.torproject.org/tpo/core/tor@a282145b3634547ab84ccd959d0537c021ff7ffc","id":"CVE-2023-23589-251611a3","target":{"file":"src/core/proto/proto_socks.c"},"signature_version":"v1","signature_type":"Line","digest":{"threshold":0.9,"line_hashes":["307772956096745468774975246938715356079","147044844402957694550310823875177869918","93200883094845881502080359252066234921","305305595534529948475529125665439507443"]},"deprecated":false},{"source":"https://gitlab.torproject.org/tpo/core/tor@a282145b3634547ab84ccd959d0537c021ff7ffc","id":"CVE-2023-23589-7ff62677","target":{"file":"src/core/proto/proto_socks.c","function":"process_socks4_request"},"signature_version":"v1","signature_type":"Function","digest":{"function_hash":"98386025198757503419272516431704592524","length":1009},"deprecated":false}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}