exploitDog

openSUSE-SU-2021:0316-1

Опубликовано: 20 фев. 2021

Источник: suse-cvrf

Описание

Security update for tor

This update for tor fixes the following issues:

tor was updated to 0.4.5.6:

https://lists.torproject.org/pipermail/tor-announce/2021-February/000214.html
Introduce a new MetricsPort HTTP interface
Support IPv6 in the torrc Address option
Add event-tracing library support for USDT and LTTng-UST
Try to read N of N bytes on a TLS connection

tor was updated to 0.4.4.7:

https://blog.torproject.org/node/1990
Stop requiring a live consensus for v3 clients and services
Re-entry into the network is now denied at the Exit level
Fix undefined behavior on our Keccak library
Strip '\r' characters when reading text files on Unix platforms
Handle partial SOCKS5 messages correctly
Check channels+circuits on relays more thoroughly (TROVE-2020-005, boo#1178741)

Список пакетов

openSUSE Leap 15.2

tor-0.4.5.6-lp152.2.6.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/II6GCVIOD4JQM4WDM3RCOTDVOZERQ3T5/
E-Mail link for openSUSE-SU-2021:0316-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1178741
SUSE Bug 1178741