tor 0.4.5.10-1 source package in Debian
Changelog
tor (0.4.5.10-1) unstable; urgency=medium * New upstream version. - Resolve an assertion failure caused by a behavior mismatch between our batch-signature verification code and our single-signature verification code. This assertion failure could be triggered remotely, leading to a denial of service attack. We fix this issue by disabling batch verification. Fixes bug 40078; bugfix on 0.2.6.1-alpha. This issue is also tracked as TROVE-2021-007 and CVE-2021-38385. Found by Henry de Valence. -- Peter Palfrader <email address hidden> Tue, 17 Aug 2021 19:34:05 +0200
Upload details
- Uploaded by:
- Peter Palfrader
- Uploaded to:
- Sid
- Original maintainer:
- Peter Palfrader
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Builds
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
tor_0.4.5.10-1.dsc | 1.9 KiB | fec1383efcf5d14cf6e2517d4c28fdd600cfc73883a314f76bcddf5ab0adad3e |
tor_0.4.5.10.orig.tar.gz | 7.5 MiB | 8fe32222f8f2b4e65c6f50ac32eb4dfca59b8af71d0d16781f7ee5bec4c00743 |
tor_0.4.5.10-1.diff.gz | 52.0 KiB | ecdc1825f28c8e8556a93102723a1ce8008ef47ff3202987ce1006fead7d92a8 |
No changes file available.