Draft blurb for 0.2.3.24-rc; guess a release date
This commit is contained in:
parent
da336312eb
commit
f684ac4fc2
15
ChangeLog
15
ChangeLog
|
@ -1,9 +1,20 @@
|
||||||
Changes in version 0.2.3.24-rc - 2012-10-2?
|
Changes in version 0.2.3.24-rc - 2012-10-25
|
||||||
o Major bugfixes:
|
Tor 0.2.3.24-rc fixes two important security vulnerabilities that
|
||||||
|
could lead to remotely triggerable relay crashes, and fixes
|
||||||
|
a major bug that was preventing clients from choosing good exit
|
||||||
|
nodes.
|
||||||
|
|
||||||
|
o Major bugfixes (security):
|
||||||
|
- Fix a group of remotely triggerable assertion failures related to
|
||||||
|
incorrect link protocol negotiation. Found, diagnosed, and fixed
|
||||||
|
by "some guy from France." Fix for CVE-2012-2250; bugfix on
|
||||||
|
0.2.3.6-alpha.
|
||||||
- Fix a denial of service attack by which any directory authority
|
- Fix a denial of service attack by which any directory authority
|
||||||
could crash all the others, or by which a single v2 directory
|
could crash all the others, or by which a single v2 directory
|
||||||
authority could crash everybody downloading v2 directory
|
authority could crash everybody downloading v2 directory
|
||||||
information. Fixes bug 7191; bugfix on 0.2.0.10-alpha.
|
information. Fixes bug 7191; bugfix on 0.2.0.10-alpha.
|
||||||
|
|
||||||
|
o Major bugfixes:
|
||||||
- When parsing exit policy summaries from microdescriptors, we had
|
- When parsing exit policy summaries from microdescriptors, we had
|
||||||
previously been ignoring the last character in each one, so that
|
previously been ignoring the last character in each one, so that
|
||||||
"accept 80,443,8080" would be treated by clients as indicating
|
"accept 80,443,8080" would be treated by clients as indicating
|
||||||
|
|
Loading…
Reference in New Issue