Tor Browser 3.5.4 is Released

The 3.5.4-stable release of the Tor Browser is now available on the Download page. You can also download the bundles directly from the distribution directory.

This release updates only OpenSSL to version 1.0.1g, to address potential client-side vectors for CVE-2014-0160.

The browser itself does not use OpenSSL, and is not vulnerable to this CVE. However, this release is still considered an important security update, because it is theoretically possible to extract sensitive information from the Tor client sub-process.

Here is the changelog:

  • All Platforms
    • Update OpenSSL to 1.0.1g

April 26, 2014


Thanks TOR proj ! A suggestion: It would be helpful to provide a search feature for your site. Also, detailed instruction or links for root access/jailbreaking for various models/operating systems. This would seem germane to the ideals and reasons for this great service.


April 28, 2014


the Apr15 post critical of the Project's course may have been snotty but your reply avoided any mention of the issues raised. this is becoming a habit, unfortunately.

Sure. Answer #1 is "because those are in Firefox" and "you can still attach Vidalia if you want".

Answer #2 is that I don't know the details of why those are in Firefox, and maybe somebody should look at it. But why do you always expect it to be me? Just because I'm the last Tor person still willing to respond to blog post comments here doesn't mean I know everything. :) You (yes, you, the one reading this) should investigate and contribute.

And the related answer #3 is that tucking your question away in the blog comments is a great way to not get a good answer. Let me direct you to three options that are more likely to help you:
A) irc:
B) stackexchange:
C) helpdesk:

Hope that helps!


May 01, 2014


How to enable save current session tabs and open webpages.
Or How to restore previous browsing session if tor browser does not close properly