Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #3328 - requested by drochner
tor security update
Revisions pulled up:
- pkgsrc/net/tor/Makefile 1.77
- pkgsrc/net/tor/distinfo 1.47
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: drochner
Date: Mon Jan 17 14:06:54 UTC 2011
Modified Files:
pkgsrc/net/tor: Makefile distinfo
Log Message:
update to 0.2.1.29
changes:
-Fix a heap overflow (probably allows remote code execution)
(CVE-2011-0427)
-Prevent a denial-of-service attack by disallowing any
zlib-compressed data whose compression factor is implausibly
high
-Zero out a few more keys in memory before freeing them
-bugfixes
-Update to the January 1 2011 Maxmind GeoLite Country db
-Introduce output size checks on all of our decryption functions
| Revision | Action | file |
| 1.76.2.1 | modify | pkgsrc/net/tor/Makefile |
| 1.46.2.1 | modify | pkgsrc/net/tor/distinfo |