maemo.org Bugzilla – Bug 12590
"Tor Status Area Applet": Update to Tor 0.2.2.35 which fixes a critical heap-overflow issue
Last modified: 2012-03-23 11:50:30 UTC
You need to
before you can comment on or make changes to this bug.
(Settings > General > About product)
EXACT STEPS LEADING TO PROBLEM:
(Explain in detail what you do (e.g. tap on OK) and what you see (e.g. message
Connection Failed appears))
1. The "Tor Status Area Applet" contains a deprecated version of Tor (0.2.2.34
(always, less than 1/10, 5/10, 9/10)
EXTRA SOFTWARE INSTALLED:
jbrownfirst: Why did you file this as critical? Were any vulnerabilities fixed?
Please see https://bugs.maemo.org/page.cgi?id=fields.html#importance
Because "Tor 0.2.2.35 fixes a critical heap-overflow security issue in Tor's
buffers code. Absolutely everybody should upgrade."