Silk Road forums

Discussion => Security => Topic started by: sourman on September 13, 2012, 12:10 pm

Title: UPDATE TOR NOW. IMPORTANT SECURITY UPDATE! (update to version 0.2.2.39)
Post by: sourman on September 13, 2012, 12:10 pm
Tor has been updated to 0.2.2.39 due to a bug that can trigger remote crashes.

Please visit the tor website (https://torproject.org) to download. If you are already running 0.2.2.39 then you obviously do not have to update.

Release notes:

 Security fixes:
 - Fix an assertion failure in tor_timegm() that could be triggered
by a badly formatted directory object. Bug found by fuzzing with
Radamsa. Fixes bug 6811; bugfix on 0.2.0.20-rc.
- Do not crash when comparing an address with port value 0 to an
 address policy. This bug could have been used to cause a remote
 assertion failure by or against directory authorities, or to
allow some applications to crash clients. Fixes bug 6690; bugfix
 on 0.2.1.10-alpha.

https://gitweb.torproject.org/tor.git/blob/release-0.2.2:/ReleaseNotes
Title: Re: UPDATE TOR NOW. IMPORTANT SECURITY UPDATE! (update to version 0.2.2.39)
Post by: acapulcogold10 on September 13, 2012, 02:11 pm
haha just went looking for the update could not find it then realized why.... me already has it you'll be pleased to know.
Title: Re: UPDATE TOR NOW. IMPORTANT SECURITY UPDATE! (update to version 0.2.2.39)
Post by: sourman on September 13, 2012, 03:04 pm
Yup, it's good to hear so many users got the update in a timely manner. I reposted this from the tor blog in case anyone is still running 0.2.2.38. This doesn't seem like an emergency or anything (unless you are a high value target), but everyone should still update as soon as possible, especially given how simple it is.
Title: Re: UPDATE TOR NOW. IMPORTANT SECURITY UPDATE! (update to version 0.2.2.39)
Post by: meatwad on September 13, 2012, 08:39 pm
is there any chance my coins could be stolen if I didnt update until after I had received my coins in Torwallet and sent them on to SR.  It has been at least an hour and still no coins in SR.  Anyone else experiencing coins taking awhile to transfer into SR today?
Title: Re: UPDATE TOR NOW. IMPORTANT SECURITY UPDATE! (update to version 0.2.2.39)
Post by: BigEasy on September 13, 2012, 10:51 pm
These tor vuln's will have nothing to do with your btc taking a while to get to SR, unless your transferring them there with a local wallet and it's torrified.

btc transfer's can take a couple hours at times, to a and a couple minutes at times... Just hold your breath and wait a little longer ;)