[tbb-bugs] #29158 [Applications/Tor Browser]: Add fix for DSA 4371-1 (apt vulnerability)

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jan 24 20:40:53 UTC 2019


#29158: Add fix for DSA 4371-1 (apt vulnerability)
--------------------------------------------+------------------------------
 Reporter:  boklm                           |          Owner:  tbb-team
     Type:  defect                          |         Status:  needs_review
 Priority:  High                            |      Milestone:
Component:  Applications/Tor Browser        |        Version:
 Severity:  Normal                          |     Resolution:
 Keywords:  TorBrowserTeam201901R, tbb-rbm  |  Actual Points:
Parent ID:                                  |         Points:
 Reviewer:                                  |        Sponsor:
--------------------------------------------+------------------------------
Changes (by boklm):

 * status:  needs_revision => needs_review
 * keywords:  TorBrowserTeam201901, tbb-rbm => TorBrowserTeam201901R, tbb-
               rbm


Comment:

 There is a patch for review in branch `bug_29158_v4`:
 https://gitweb.torproject.org/user/boklm/tor-browser-
 build.git/commit/?h=bug_29158_v4&id=f9cbcb92e13bea3792733dd89d6efab4d62be7e2

 We are now checking the version of the `apt` package installed.

 It is still missing the fix for `wheezy-i386` which I think could be done
 in a separate commit.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29158#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tbb-bugs mailing list