[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Last openssl update for Ubuntu breaks Tor

To: or-talk@xxxxxxxxxxxxx
Subject: Last openssl update for Ubuntu breaks Tor
From: ml@xxxxxxxxxxx
Date: Thu, 09 Dec 2010 19:02:30 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 09 Dec 2010 13:11:49 -0500
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird

Hi,

i have/had problems with Tor 0.2.2.19-alpha and 0.2.1.27 (recompiled) after
the last openssl update under Ubuntu Maverick according "Ubuntu Security
Notice USN-1029-1, December 08, 2010, openssl vulnerabilities, CVE-2008-7270,
CVE-2010-4180".

Both Tor versions crash with core dumps and the last line in info.log is:
"[info] cpuworker_main(): CPU worker exiting because Tor process closed
connection (either rotated keys or died)."

Because i'm running Tor in chroot, i deleted everything under /var/lib/tor
and replaced the openssl libs with the prior version from 30.11.2010
<http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8o-3ubuntu1_i386.deb>
till this problem is solved. And now Tor works.

Ciao
Kai
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Last openssl update for Ubuntu breaks Tor
  - From: Ted Smith

Prev by Author: Re: 27C3 on Tor
Next by Author: Re: Last openssl update for Ubuntu breaks Tor
Previous by thread: Re: Torbutton, CSS3 and window size
Next by thread: Re: Last openssl update for Ubuntu breaks Tor
Index(es):
- Author
- Thread