The version of tor in quarterly branch is 0.3.1.7 which is affected by CVE-2017-8819. Please upgrade it.
Maintainer informed via mail
Over to maintainer
For reference the original unmerged security update was ports r455329
Why is it taking so long to do a simple version upgrade? Q4 is almost over and this bug report is becoming pointless... Disappointed with the way FreeBSD maintainers treat the quarterly branch. :-(
Committed. Sorry for the delay.