New Version Of Tor Plugs Security Leak


Recommended Posts

Jan 23 2009

New version of Tor plugs security leak

Although the Tor project developers recently announced that they had eliminated all errors and security vulnerabilities from their anonymisation software, they were refering to those discovered by Coverity. They have now released version 0.2.0.33, which plugs a vulnerability pointed out by Ilja van Sprundel, a security specialist.

The vulnerability is reported to be a heap corruption that can be exploited remotely on some systems, but the change log doesn't explain exactly what to make of this. At any rate, they classify this as an important security-related problem and are advising users to update. The new version also eliminates many minor and major errors regarding stability. Ready-made Tor package installers for Windows and Mac are available to download, and there are finished RPMs for Suse Linux and Redhat. See also:

(crve)

Read Heise Security: http://www.heise-online.co.uk/security/New...k--/news/112475

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...