Ubuntu
tor package

tor 0.1.0.16-1ubuntu2.1 source package in Ubuntu

Changelog

tor (0.1.0.16-1ubuntu2.1) dapper-security; urgency=low

  * SECURITY UPDATE: Fix clients being exploited as servers.
  * src/or/connection_edge.c, src/or/circuitbuild.c, src/or/command.c:
    If a routing request is recieved, ensure that tor is in fact configured as
    as server. If it is not, drop the request. Previously, a malicious entry
    node could route traffic through a client as though it was a server.
  * References:
    - CVE-2006-4508
    - http://archives.seul.org/or/announce/Aug-2006/msg00001.html

 -- William Alexander Grant <email address hidden>   Tue, 26 Sep 2006 09:16:22 +1000

Upload details

Uploaded by:
William Grant
Uploaded to:
Dapper
Original maintainer:
Peter Palfrader
Architectures:
any
Section:
comm
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
tor_0.1.0.16.orig.tar.gz 618.5 KiB 5d95cc3299f302398a41cbfb3d10265e3561c8a871e217158c7cbf05c4b3478a
tor_0.1.0.16-1ubuntu2.1.diff.gz 68.7 KiB 668c82453b6bb97334ef6283284e3c5bae21ed7b47e6a3fed34d1b4e73900333
tor_0.1.0.16-1ubuntu2.1.dsc 707 bytes d1bac4265ed064adae3ba71ce0d0bd028f04fb266ffd3d4f04211b86ee7d3e30

View changes file

Binary packages built by this source

tor: No summary available for tor in ubuntu dapper.

No description available for tor in ubuntu dapper.

tor-dbg: No summary available for tor-dbg in ubuntu dapper.

No description available for tor-dbg in ubuntu dapper.