—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.6 (GNU\/Linux)<\/p>\n
iD8DBQFJkLhO61qJaiiYi\/URAnOdAJ9yWfCVeWO5oy1aIZ4z0dlzMeKyNgCff9q2
Ncj2zVwBxW74O4zu+VdaRls=
=1rwb
—–END PGP SIGNATURE—–<\/p>\n
Tor 0.2.0.34 features several more security-related fixes. You
should upgrade, especially if you run an exit relay (remote crash) or
a directory authority (remote infinite loop), or you're on an older
(pre-XP) or not-recently-patched Windows (remote exploit).<\/p>\n
This release marks end-of-life for Tor 0.1.2.x. Those Tor versions have
many known flaws, and nobody should be using them. You should upgrade. If
you're using a Linux or BSD and its packages are obsolete, stop using
those packages and upgrade anyway.<\/p>\n
https:\/\/www.torproject.org\/download.html<\/a><\/p>\n Changes in version 0.2.0.34 – 2009-02-08 o Minor bugfixes: —–BEGIN PGP SIGNATURE—– iD8DBQFJkLhO61qJaiiYi\/URAnOdAJ9yWfCVeWO5oy1aIZ4z0dlzMeKyNgCff9q2 <\/p>\n","protected":false},"excerpt":{"rendered":" —–BEGIN PGP SIGNATURE—–Version: … \u7ee7\u7eed\u9605\u8bfbFwd: Tor 0.2.0.34 is released (security fixes)<\/span>
o Security fixes:
– Fix an infinite-loop bug on handling corrupt votes under certain
circumstances. Bugfix on 0.2.0.8-alpha.
– Fix a temporary DoS vulnerability that could be performed by
a directory mirror. Bugfix on 0.2.0.9-alpha; reported by lark.
– Avoid a potential crash on exit nodes when processing malformed
input. Remote DoS opportunity. Bugfix on 0.2.0.33.
– Do not accept incomplete ipv4 addresses (like 192.168.0) as valid.
Spec conformance issue. Bugfix on Tor 0.0.2pre27.<\/p>\n
– Fix compilation on systems where time_t is a 64-bit integer.
Patch from Matthias Drochner.
– Don't consider expiring already-closed client connections. Fixes
bug 893. Bugfix on 0.0.2pre20.<\/p>\n
Version: GnuPG v1.4.6 (GNU\/Linux)<\/p>\n
Ncj2zVwBxW74O4zu+VdaRls=
=1rwb
—–END PGP SIGNATURE—–<\/p>\n<\/div>\n