tor

• Author: voroskoi
• Vulnerable: 0.1.1.23-1
• Unaffected: 0.1.1.26-1siwenna1

1. Stop sending the HttpProxyAuthenticator string to directory servers when directory connections are tunnelled through Tor.
2. Clients no longer store bandwidth history in the state file.
3. Do not log introduction points for hidden services if SafeLogging is set.
4. When the user sends a NEWNYM signal, clear the client-side DNS cache too. Otherwise we continue to act on previous information.

• Bug Tracker URL: http://bugs.frugalware.org/task/1536

CVEs:

• There is no CVE for these issues, see Changelog of tor.