CVE-2012-4929
First published: Thu Sep 13 2012(Updated: )
The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google Chrome, Qt, and other products, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which allows man-in-the-middle attackers to obtain plaintext HTTP headers by observing length differences during a series of guesses in which a string in an HTTP request potentially matches an unknown string in an HTTP header, aka a "CRIME" attack.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Debian Linux | =7.0 | |
| Debian Linux | =8.0 | |
| Google Chrome | ||
| Firefox |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://arstechnica.com/security/2012/09/crime-hijacks-https-sessions/
- http://code.google.com/p/chromium/issues/detail?id=139744
- http://isecpartners.com/blog/2012/9/14/details-on-the-crime-attack.html
- http://jvn.jp/en/jp/JVN65273415/index.html
- http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000129.html
- http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-April/101366.html
- http://lists.opensuse.org/opensuse-updates/2012-10/msg00096.html
- http://lists.opensuse.org/opensuse-updates/2013-01/msg00034.html
- http://lists.opensuse.org/opensuse-updates/2013-01/msg00048.html
- http://marc.info/?l=bugtraq&m=136612293908376&w=2
- http://news.ycombinator.com/item?id=4510829
- http://rhn.redhat.com/errata/RHSA-2013-0587.html
- http://security.stackexchange.com/questions/19911/crime-how-to-beat-the-beast-successor
- http://support.apple.com/kb/HT5784
- http://threatpost.com/en_us/blogs/crime-attack-uses-compression-ratio-tls-requests-side-channel-hijack-secure-sessions-091312
- http://threatpost.com/en_us/blogs/new-attack-uses-ssltls-information-leak-hijack-https-sessions-090512
- http://www.debian.org/security/2012/dsa-2579
- http://www.debian.org/security/2013/dsa-2627
- http://www.debian.org/security/2015/dsa-3253
- http://www.ekoparty.org/2012/thai-duong.php
- http://www.iacr.org/cryptodb/data/paper.php?pubkey=3091
- http://www.securityfocus.com/bid/55704
- http://www.theregister.co.uk/2012/09/14/crime_tls_attack/
- http://www.ubuntu.com/usn/USN-1627-1
- http://www.ubuntu.com/usn/USN-1628-1
- http://www.ubuntu.com/usn/USN-1898-1
- https://bugzilla.redhat.com/show_bug.cgi?id=857051
- https://chromiumcodereview.appspot.com/10825183
- https://community.qualys.com/blogs/securitylabs/2012/09/14/crime-information-leakage-attack-against-ssltls
- https://gist.github.com/3696912
- https://github.com/mpgn/CRIME-poc
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18920
- https://threatpost.com/en_us/blogs/demo-crime-tls-attack-091212
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=737506
- http://www.ekoparty.org/2012/juliano-rizzo.php
- http://www.h-online.com/security/news/item/BEAST-creators-develop-new-SSL-attack-1702136.html
- http://security.blogoverflow.com/2012/09/how-can-you-protect-yourself-from-crime-beasts-successor/
- http://www.youtube.com/watch?v=gGPhHYyg9r4
- http://thread.gmane.org/gmane.network.gnutls.general/2887
- http://www.gnu.org/software/gnutls/security.html
- https://lwn.net/Articles/516038/
- https://threatpost.com/en_us/blogs/crime-attack-uses-compression-ratio-tls-requests-side-channel-hijack-secure-sessions-091312
- http://security.stackexchange.com/questions/19911/crime-how-to-beat-the-beast-successor/19914#19914
- http://www.mozilla.org/en-US/firefox/11.0/releasenotes/
- https://hacks.mozilla.org/2012/02/spdy-brings-responsive-and-scalable-transport-to-firefox-11/
- http://www.mozilla.org/en-US/firefox/13.0/releasenotes/
- http://cvs.openssl.org/chngview?cn=9594
- http://pkgs.fedoraproject.org/cgit/openssl.git/tree/openssl-0.9.8j-env-nozlib.patch?id=1d20b5f2
- http://bridge.grumpy-troll.org/2012/09/tls-crime-beast-and-you-programmer.html
- https://access.redhat.com/security/cve/CVE-2012-4929
- https://access.redhat.com/security/cve/CVE-2012-4930
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857737
- https://access.redhat.com/security/cve/CVE-2012-3977
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=859827
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857051#c5
- http://qt.digia.com/Release-Notes/security-issue-september-2012/
- http://thread.gmane.org/gmane.comp.lib.qt.devel/6729
- http://qt.gitorious.org/qt/qt/commit/3488f1db96dbf70bb0486d3013d86252ebf433e0
- http://qt.gitorious.org/qt/qt/commit/d41dc3e101a694dec98d7bbb582d428d209e5401
- http://qt.gitorious.org/qt/qtbase/commit/5ea896fbc63593f424a7dfbb11387599c0025c74
- https://issues.apache.org/bugzilla/show_bug.cgi?id=53219
- http://svn.apache.org/viewvc?view=revision&revision=1345319
- http://svn.apache.org/viewvc?view=revision&revision=1369585
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857051#c14
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=886173
- https://rhn.redhat.com/errata/RHSA-2013-0587.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857051#c30
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=920869
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=920868
- https://rhn.redhat.com/errata/RHSA-2013-0636.html
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=857051#c31
- https://rhn.redhat.com/errata/RHSA-2014-0416.html
Frequently Asked Questions
What is the severity of CVE-2012-4929?
CVE-2012-4929 is considered a medium to high severity vulnerability that can lead to man-in-the-middle attacks.
How can I fix CVE-2012-4929?
To fix CVE-2012-4929, update affected software such as Mozilla Firefox and Google Chrome to the latest versions.
Which versions of software are affected by CVE-2012-4929?
CVE-2012-4929 affects TLS protocol 1.2 and earlier versions in browsers like Firefox, Chrome, and operating systems like Debian 7.0 and 8.0.
What type of attack does CVE-2012-4929 enable?
CVE-2012-4929 enables man-in-the-middle attackers to exploit vulnerabilities in TLS compression to obtain plaintext HTTP headers.
Is CVE-2012-4929 still a threat today?
While CVE-2012-4929 has been addressed in later software versions, it may still pose a threat for users operating outdated versions of affected software.
- collector/redhat-bugzilla
- alias/CVE-2012-4929
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/description
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/debian
- canonical/debian linux
- version/debian linux/7.0
- version/debian linux/8.0
- vendor/google
- canonical/google chrome
- vendor/mozilla
- canonical/firefox