Tor 0.2.1.28 is released (security patches)

by phobos | December 20, 2010

Tor 0.2.1.28 does some code cleanup to reduce the risk of remotely
exploitable bugs. Thanks to Willem Pinckaers for notifying us of the
issue. The Common Vulnerabilities and Exposures project has assigned
CVE-2010-1676 to this issue.

We also took this opportunity to change the IP address for one of our
directory authorities, and to update the geoip database we ship.

All Tor users should upgrade.

https://www.torproject.org/download/download

Changes in version 0.2.1.28 - 2010-12-17
Major bugfixes:

Fix a remotely exploitable bug that could be used to crash instances of Tor remotely by overflowing on the heap. Remote-code execution hasn't been confirmed, but can't be ruled out. Everyone should upgrade. Bugfix on the 0.1.1 series and later.

Directory authority changes:

Change IP address and ports for gabelmoo (v3 directory authority).

Minor features:

Update to the December 1 2010 Maxmind GeoLite Country database.

releases

Comments

Comments are closed.

Upcoming Events

May 31, 2024 – June 2, 2024

ETHPrague

June 4, 2024 – June 5, 2024

PDAF - Palestine Digital Activism Forum 2024

June 13, 2024 – June 15, 2024

BTCPrague 2024

July 12, 2024 – July 14, 2024

HOPE XV

July 15, 2024 – July 20, 2024

24th Privacy Enhancing Technologies Symposium (PETS)

Recent Updates

New Release: Tor Browser 13.0.14

by richard | April 16, 2024

Tor Browser 13.0.14 is now available from the Tor Browser download page and also from our distribution directory.

Code audit for censorship circumvention tools completed by Cure53

by gaba | April 10, 2024

Cure53 performed a code audit to help uncover potential vulnerabilities produced during the implementation of updated and new anti-censorship tools.

Surveillance as a Service: The Global Impact of Israeli “Defense” Technologies on Privacy and Human Rights

by Esra’a Al Shafei, Falastine Saleh | April 8, 2024

There is a growing need for a global stance against the use of technology for oppression. This post delves into the impact of Israeli surveillance technologies in Palestine and how localized instances of its use contribute to widespread acceptance and global adoption of such oppressive practices.