[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?
From: Soul Plane <soulplane11@xxxxxxxxx>
Date: Fri, 12 Feb 2016 14:38:02 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 12 Feb 2016 14:38:15 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=dvVy8650WJrmj96GFKCkA0EJ50vszSMwS00K2wgwgus=; b=CweH34ZBkgSw/FnTf4Jd1AArV5D8Z7e7x1tjVPFBUhQbOn57tAc5QyB6/0WEGkEQSA yc7us1xJx2llNeyS5ycwoiBp0x3Ect5zdh59la6vj4IWWR3M/8QBYvnJEOJJgzmrqEU/ HVOrnmiFrOLDxUy9J1WXbrsFLSlAObfS1ry6u/2vlrOmNZ2BCtBNVCoq40RqB3GDA/Xp B0VfSLAqrkM75FgI+W6B7Nwq1TLPyo0sklRv4rmlkpJyAodRiK1juiOacA9SP6iUPmWV VtNofGMrj47Gr5amaJu7PkUSGTBb4hh0KOK4xPLYUnyCb38TIbxQoiwUEJiRd5GmSHZG QDZQ==
In-reply-to: <56BD7E7D.7000903@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <1639231455258005@xxxxxxxxxxxxxxx> <56BD7E7D.7000903@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Fri, Feb 12, 2016 at 1:41 AM, Georg Koppen <gk@xxxxxxxxxxxxxx> wrote:

> Cain Ungothep:
> >> I would
> >> like to know if Tor Browser 5.5.1 is vulnerable. Thanks
> >
> > Looks like it is:
> >
> >
> https://gitweb.torproject.org/builders/tor-browser-bundle.git/commit/?id=7a36dbece35a307675f396a019dccf6e431efb44
> >
> > That build corresponds to a branch which includes the commit that
> > supposedly fixed bug 1246093, and this commit was only pushed less than
> > 48 hours ago.
>
> Indeed. We plan to get at least a new stable version (5.5.2) out today
> which is based on Firefox ESR 38.6.1. Mozilla released 38.6.1 just to
> address the Graphite vulnerabilities.
>


Thanks, I have downloaded version 5.5.2.
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?
  - From: Cain Ungothep
- Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?
  - From: Georg Koppen

Prev by Author: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?
Next by Author: [tor-talk] Exit Traffic classification and discrimination
Previous by thread: Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the graphite font vulnerabilities?
Next by thread: Re: [tor-talk] [Fwd: Multiple Internets]
Index(es):
- Author
- Thread