From mboxrd@z Thu Jan 1 00:00:00 1970 From: Peter =?utf-8?q?M=C3=BCller?= To: development@lists.ipfire.org Subject: [PATCH] Tor: Update to 0.4.8.9 Date: Wed, 22 Nov 2023 15:00:00 +0000 Message-ID: <4bf8cb9f-ff0e-4b61-90e3-ede6d06b874d@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============6939682371751401842==" List-Id: --===============6939682371751401842== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Changes in version 0.4.8.9 - 2023-11-09 This is another security release fixing a high severity bug affecting onion services which is tracked by TROVE-2023-006. We are also releasing a guard major bugfix as well. If you are an onion service operator, we strongly recommend to update as soon as possible. o Major bugfixes (guard usage): - When Tor excluded a guard due to temporary circuit restrictions, it considered *additional* primary guards for potential usage by that circuit. This could result in more than the specified number of guards (currently 2) being used, long-term, by the tor client. This could happen when a Guard was also selected as an Exit node, but it was exacerbated by the Conflux guard restrictions. Both instances have been fixed. Fixes bug 40876; bugfix on 0.3.0.1-alpha. o Major bugfixes (onion service, TROVE-2023-006): - Fix a possible hard assert on a NULL pointer when recording a failed rendezvous circuit on the service side for the MetricsPort. Fixes bug 40883; bugfix on 0.4.8.1-alpha o Minor features (fallbackdir): - Regenerate fallback directories generated on November 09, 2023. o Minor features (geoip data): - Update the geoip files to match the IPFire Location Database, as retrieved on 2023/11/09. Changes in version 0.4.8.8 - 2023-11-03 We are releasing today a fix for a high security issue, TROVE-2023-004, that is affecting relays. Also a few minor bugfixes detailed below. Please upgra= de as soon as posssible. o Major bugfixes (TROVE-2023-004, relay): - Mitigate an issue when Tor compiled with OpenSSL can crash during handshake with a remote relay. Fixes bug 40874; bugfix on 0.2.7.2-alpha. o Minor features (fallbackdir): - Regenerate fallback directories generated on November 03, 2023. o Minor features (geoip data): - Update the geoip files to match the IPFire Location Database, as retrieved on 2023/11/03. o Minor bugfixes (directory authority): - Look at the network parameter "maxunmeasuredbw" with the correct spelling. Fixes bug 40869; bugfix on 0.4.6.1-alpha. o Minor bugfixes (vanguards addon support): - Count the conflux linked cell as valid when it is successfully processed. This will quiet a spurious warn in the vanguards addon. Fixes bug 40878; bugfix on 0.4.8.1-alpha. Signed-off-by: Peter M=C3=BCller --- lfs/tor | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lfs/tor b/lfs/tor index 7a9ca4128..cf0ccaf9e 100644 --- a/lfs/tor +++ b/lfs/tor @@ -26,7 +26,7 @@ include Config =20 SUMMARY =3D Anonymizing overlay network for TCP (The onion router) =20 -VER =3D 0.4.8.7 +VER =3D 0.4.8.9 =20 THISAPP =3D tor-$(VER) DL_FILE =3D $(THISAPP).tar.gz @@ -34,7 +34,7 @@ DL_FROM =3D $(URL_IPFIRE) DIR_APP =3D $(DIR_SRC)/$(THISAPP) TARGET =3D $(DIR_INFO)/$(THISAPP) PROG =3D tor -PAK_VER =3D 81 +PAK_VER =3D 82 =20 DEPS =3D libseccomp =20 @@ -48,7 +48,7 @@ objects =3D $(DL_FILE) =20 $(DL_FILE) =3D $(DL_FROM)/$(DL_FILE) =20 -$(DL_FILE)_BLAKE2 =3D 4d0cde752a729c64e380663e4438398fe768a8657e9aa3246bdf0e= c9a4b4e01e277cb594ae0cb44cc66ea8c6080f2e58c6daf1bf01dc51b678d228e8e38fc971 +$(DL_FILE)_BLAKE2 =3D a2d8cc8e60f162930d64d191af1893cb4060a8d98c16560c9ba30e= 0a9a0fd9cce2132573ca4db7b8b6e002f127f06b53fc5aea5fb6e8795c10f73671d14d9190 =20 install : $(TARGET) =20 --=20 2.35.3 --===============6939682371751401842==--