-
tor (0.2.3.25-1) unstable; urgency=low
* New upstream release. The 0.2.3.x tree goes stable.
* Dedicated to the memory of Len "rabbi" Sassaman (1980-2011). We miss
you, Len.
-- Peter Palfrader <email address hidden> Tue, 20 Nov 2012 22:00:34 +0100
-
tor (0.2.3.24-rc-1) unstable; urgency=high
* New upstream version:
- Fix a group of remotely triggerable assertion failures related to
incorrect link protocol negotiation. Found, diagnosed, and fixed
by "some guy from France". Fix for CVE-2012-2250; bugfix on
0.2.3.6-alpha.
- Fix a denial of service attack by which any directory authority
could crash all the others, or by which a single v2 directory
authority could crash everybody downloading v2 directory
information. Fixes bug 7191; bugfix on 0.2.0.10-alpha.
- and more.
-- Peter Palfrader <email address hidden> Fri, 26 Oct 2012 09:15:09 +0200
-
tor (0.2.3.22-rc-1) unstable; urgency=high
[ Peter Palfrader ]
* New upstream version:
- Fix an assertion failure in tor_timegm() that could be triggered
by a badly formatted directory object. Bug found by fuzzing with
Radamsa. Fixes bug 6811; bugfix on 0.2.0.20-rc.
[ Stefano Zacchiroli ]
* README.privoxy, README.polipo: explicitly set socks type to socks5.
-- Peter Palfrader <email address hidden> Tue, 11 Sep 2012 22:41:41 +0200