Bug 136115 - [PATCH] security/tor: Update to version 0.2.0.35
Summary: [PATCH] security/tor: Update to version 0.2.0.35
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Martin Wilke
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-06-28 05:00 UTC by Sylvio César Teixeira Amorim
Modified: 2009-07-07 21:30 UTC (History)
1 user (show)

See Also:


Attachments
tor-0.2.0.35.patch (1.12 KB, patch)
2009-06-28 05:00 UTC, Sylvio César Teixeira Amorim
no flags Details | Diff
tor_02035_diff.txt (1.76 KB, text/plain; charset=US-ASCII)
2009-07-01 00:36 UTC, b. f.
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Sylvio César Teixeira Amorim 2009-06-28 05:00:15 UTC
- Update to version 0.2.0.35

Port maintainer (miwi@FreeBSD.org) is cc'd.

Generated with FreeBSD Port Tools 0.77
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2009-06-28 05:00:26 UTC
Responsible Changed
From-To: freebsd-ports-bugs->miwi

Over to maintainer (via the GNATS Auto Assign Tool)
Comment 2 b. f. 2009-07-01 00:36:18 UTC
A revised patch with two more tweaks:

-- update the project website and remove a warning that crept in from
security/tor-devel in the last major version update; and

-- bring us closer into line with the bundled tor.spec, and be safer,
by using nologin(8) as the default shell of the tor daemon.

Note that this update fixes a major bug and two security problems, so
it is desirable to update soon.  From the changelog:

"Tor 0.2.0.35 fixes a big bug that was causing Tor relays with dynamic
IP addresses to disappear from the network. It also fixes a rare crash
bug on fast exit relays.

Changes in version 0.2.0.35 - 2009-06-24
  o Security fix:
    - Avoid crashing in the presence of certain malformed descriptors.
      Found by lark, and by automated fuzzing.
    - Fix an edge case where a malicious exit relay could convince a
      controller that the client's DNS question resolves to an internal IP
      address. Bug found and fixed by "optimist"; bugfix on 0.1.2.8-beta.

  o Major bugfixes:
    - Finally fix the bug where dynamic-IP relays disappear when their
      IP address changes: directory mirrors were mistakenly telling
      them their old address if they asked via begin_dir, so they
      never got an accurate answer about their new address, so they
      just vanished after a day. For belt-and-suspenders, relays that
      don't set Address in their config now avoid using begin_dir for
      all direct connections. Should fix bugs 827, 883, and 900.
    - Fix a timing-dependent, allocator-dependent, DNS-related crash bug
      that would occur on some exit nodes when DNS failures and timeouts
      occurred in certain patterns. Fix for bug 957."

...


b.
Comment 3 dfilter service freebsd_committer freebsd_triage 2009-07-07 21:24:06 UTC
miwi        2009-07-07 20:23:57 UTC

  FreeBSD ports repository

  Modified files:
    security/tor         Makefile distinfo pkg-descr pkg-install 
  Log:
  - Update to 0.2.0.35
  
  PR:             136115 (based on)
  Submitted by:   Sylvio Cesar <scjamorim@bsd.com.br>
                  "b. f." <bf1783@googlemail.com>
  
  Revision  Changes    Path
  1.48      +1 -1      ports/security/tor/Makefile
  1.29      +3 -3      ports/security/tor/distinfo
  1.5       +1 -4      ports/security/tor/pkg-descr
  1.3       +1 -1      ports/security/tor/pkg-install
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 4 Martin Wilke freebsd_committer freebsd_triage 2009-07-07 21:25:13 UTC
State Changed
From-To: open->closed

Committed. Thanks!