(FWD) Re: [tor-talk] Javascript exploit - tbb-dev

29 Nov 2016


      In case you haven't noticed this through some other channel.
--Roger
----- Forwarded message from Roger Dingledine arma@mit.edu -----
Date: Tue, 29 Nov 2016 17:43:26 -0500
From: Roger Dingledine arma@mit.edu
To: tor-talk@lists.torproject.org
Subject: Re: [tor-talk] Javascript exploit
On Tue, Nov 29, 2016 at 09:55:23PM -0000, firstwatch@sigaint.org wrote:
...
This is an Javascript exploit
Thanks. I pointed some folks on irc to this mail, and Daniel Veditz
(Mozilla Security Team) said "the Firefox team was sent a copy of that
this morning. We've found the bug being used and are working on a patch."
So it sounds like the immediate next step is that Mozilla finishes their
patch for it; then the step after that is a quick Tor Browser update. And
somewhere in there people will look at the bug and see whether they
think it really does apply to Tor Browser.
--Roger
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

----- End forwarded message -----