0.2.x offers major fixes, but of course I do not know if they are enough to
push this to Intrepid. Here are some of those fixes that I think might be the
important ones:
- Non-exit relays no longer answer "resolve" relay cells, so they
can't be induced to do arbitrary DNS requests.
- Reject requests for reverse-dns lookup of names that are in
a private address space.
- As a client, do not believe any server that tells us that an
address maps to an internal address space.
- If we're a relay, avoid picking ourselves as an introduction point,
a rendezvous point, or as the final hop for internal circuits.
- Detect size overflow in zlib code.
- Avoid segfault in the case where a badly behaved v2 versioning
directory sends a signed networkstatus with missing client-versions.
You can read the rest from
http://archives.seul.org/or/announce/Aug-2008/msg00000.html
--
version bump to 0.2.X
https://bugs.launchpad.net/bugs/261693
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
