tor 0.1.0.16-1ubuntu2.1 source package in Ubuntu
Changelog
tor (0.1.0.16-1ubuntu2.1) dapper-security; urgency=low * SECURITY UPDATE: Fix clients being exploited as servers. * src/or/connection_edge.c, src/or/circuitbuild.c, src/or/command.c: If a routing request is recieved, ensure that tor is in fact configured as as server. If it is not, drop the request. Previously, a malicious entry node could route traffic through a client as though it was a server. * References: - CVE-2006-4508 - http://archives.seul.org/or/announce/Aug-2006/msg00001.html -- William Alexander Grant <email address hidden> Tue, 26 Sep 2006 09:16:22 +1000
Upload details
- Uploaded by:
- William Grant
- Uploaded to:
- Dapper
- Original maintainer:
- Peter Palfrader
- Architectures:
- any
- Section:
- comm
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
tor_0.1.0.16.orig.tar.gz | 618.5 KiB | 5d95cc3299f302398a41cbfb3d10265e3561c8a871e217158c7cbf05c4b3478a |
tor_0.1.0.16-1ubuntu2.1.diff.gz | 68.7 KiB | 668c82453b6bb97334ef6283284e3c5bae21ed7b47e6a3fed34d1b4e73900333 |
tor_0.1.0.16-1ubuntu2.1.dsc | 707 bytes | d1bac4265ed064adae3ba71ce0d0bd028f04fb266ffd3d4f04211b86ee7d3e30 |