From 4d321cbc2de0d78b399d6bc970dfbffa0b02eab9 Mon Sep 17 00:00:00 2001 From: salo Date: Wed, 22 Jun 2005 15:53:24 +0000 Subject: Security update to version 0.0.9.10 Changes: Bugfixes on 0.0.9.x (backported from 0.1.0.10): - Refuse relay cells that claim to have a length larger than the maximum allowed. This prevents a potential attack that could read arbitrary memory (e.g. keys) from an exit server's process. Bugfixes on 0.0.9.x: - If unofficial Tor clients connect and send weird TLS certs, our Tor server triggers an assert. This release contains a minimal backport from the broader fix that we put into 0.1.0.4-rc. Approved by --- net/tor/Makefile | 4 ++-- net/tor/distinfo | 8 ++++---- 2 files changed, 6 insertions(+), 6 deletions(-) (limited to 'net/tor') diff --git a/net/tor/Makefile b/net/tor/Makefile index f64a0fced8d..2a6d0f6d8e7 100644 --- a/net/tor/Makefile +++ b/net/tor/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.13 2005/04/16 15:58:07 jschauma Exp $ +# $NetBSD: Makefile,v 1.14 2005/06/22 15:53:24 salo Exp $ # -DISTNAME= tor-0.0.9.8 +DISTNAME= tor-0.0.9.10 CATEGORIES= net security MASTER_SITES= http://tor.eff.org/dist/ diff --git a/net/tor/distinfo b/net/tor/distinfo index 059620b9568..66cd820bb12 100644 --- a/net/tor/distinfo +++ b/net/tor/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.9 2005/04/16 15:58:07 jschauma Exp $ +$NetBSD: distinfo,v 1.10 2005/06/22 15:53:24 salo Exp $ -SHA1 (tor-0.0.9.8.tar.gz) = 59895c9e9dd52fcb474d757eda46a14a4e590390 -RMD160 (tor-0.0.9.8.tar.gz) = 62f37cbbeee33ef35f983c36a5911a3f4c23d3d5 -Size (tor-0.0.9.8.tar.gz) = 574685 bytes +SHA1 (tor-0.0.9.10.tar.gz) = 146af8d7f8649d9f9e092131c9d18645d864caf4 +RMD160 (tor-0.0.9.10.tar.gz) = c78a1c57953d5ec2fca6fff5ed0e605c647f1b42 +Size (tor-0.0.9.10.tar.gz) = 558945 bytes SHA1 (patch-ac) = c036da74ca6f842af9c5426b96ee0e65215bb964 -- cgit v1.2.3