[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Last openssl update for Ubuntu breaks Tor



Hi,

i have/had problems with Tor 0.2.2.19-alpha and 0.2.1.27 (recompiled) after
the last openssl update under Ubuntu Maverick according "Ubuntu Security
Notice USN-1029-1, December 08, 2010, openssl vulnerabilities, CVE-2008-7270,
CVE-2010-4180".

Both Tor versions crash with core dumps and the last line in info.log is:
"[info] cpuworker_main(): CPU worker exiting because Tor process closed
connection (either rotated keys or died)."

Because i'm running Tor in chroot, i deleted everything under /var/lib/tor
and replaced the openssl libs with the prior version from 30.11.2010
<http://security.ubuntu.com/ubuntu/pool/main/o/openssl/libssl0.9.8_0.9.8o-3ubuntu1_i386.deb>
till this problem is solved. And now Tor works.

Ciao
Kai
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/