|
|
@@ -2,8 +2,8 @@ Changes in version 0.2.3.11-alpha - 201?-??-??
|
|
|
|
|
|
|
|
|
Changes in version 0.2.3.10-alpha - 2011-12-16
|
|
|
- Tor 0.2.3.10-alpha fixes a critical heap-overflow security issue in Tor's
|
|
|
- buffers code. Absolutely everybody should upgrade.
|
|
|
+ Tor 0.2.3.10-alpha fixes a critical heap-overflow security issue in
|
|
|
+ Tor's buffers code. Absolutely everybody should upgrade.
|
|
|
|
|
|
The bug relied on an incorrect calculation when making data continuous
|
|
|
in one of our IO buffers, if the first chunk of the buffer was
|
|
|
@@ -20,8 +20,8 @@ Changes in version 0.2.3.10-alpha - 2011-12-16
|
|
|
This bug does not affect bufferevents-based builds of Tor. Special
|
|
|
thanks to "Vektor" for reporting this issue to us!
|
|
|
|
|
|
- This release also contains a few minor bugfixes for issues
|
|
|
- discovered in 0.2.3.9-alpha.
|
|
|
+ This release also contains a few minor bugfixes for issues discovered
|
|
|
+ in 0.2.3.9-alpha.
|
|
|
|
|
|
o Major bugfixes:
|
|
|
- Fix a heap overflow bug that could occur when trying to pull
|
|
|
@@ -33,21 +33,19 @@ Changes in version 0.2.3.10-alpha - 2011-12-16
|
|
|
- If we can't attach streams to a rendezvous circuit when we
|
|
|
finish connecting to a hidden service, clear the rendezvous
|
|
|
circuit's stream-isolation state and try to attach streams
|
|
|
- again. Previously, we cleared rendezvous circuits' isolation
|
|
|
- state either too early (if they were freshly built) or not at
|
|
|
- all (if they had been built earlier and were cannibalized).
|
|
|
- Bugfix on 0.2.3.3-alpha; fixes bug 4655.
|
|
|
+ again. Previously, we cleared rendezvous circuits' isolation
|
|
|
+ state either too early (if they were freshly built) or not at all
|
|
|
+ (if they had been built earlier and were cannibalized). Bugfix on
|
|
|
+ 0.2.3.3-alpha; fixes bug 4655.
|
|
|
- Fix compilation of the libnatpmp helper on non-Windows. Bugfix on
|
|
|
0.2.3.9-alpha; fixes bug 4691. Reported by Anthony G. Basile.
|
|
|
- Fix an assertion failure when a relay with accounting enabled
|
|
|
- starts up while dormant. Fixes bug 4702; bugfix on
|
|
|
- 0.2.3.9-alpha.
|
|
|
+ starts up while dormant. Fixes bug 4702; bugfix on 0.2.3.9-alpha.
|
|
|
|
|
|
o Minor features:
|
|
|
- Update to the December 6 2011 Maxmind GeoLite Country database.
|
|
|
|
|
|
|
|
|
-
|
|
|
Changes in version 0.2.3.9-alpha - 2011-12-08
|
|
|
Tor 0.2.3.9-alpha introduces initial IPv6 support for bridges, adds
|
|
|
a "DisableNetwork" security feature that bundles can use to avoid
|
Roger Dingledine