Polipo bug Re: Tor is out (security patches)

Geoff Down geoffdown at fastmail.net
Thu Jan 20 12:56:15 UTC 2011

On Tue, 18 Jan 2011 22:11 -0500, "Roger Dingledine" <arma at mit.edu>
> Tor includes all the patches from Tor, which
> continues our recent code security audit work. The main fix resolves
> a remote heap overflow vulnerability that can allow remote code
> execution (CVE-2011-0427). Other fixes address a variety of assert
> and crash bugs, most of which we think are hard to exploit remotely.
> All Tor users should upgrade.

The Polipo in
is broken:

dyld: /Applications/Vidalia.app.new/Contents/MacOS/polipo Undefined
/Applications/Vidalia.app.new/Contents/MacOS/polipo undefined reference
to ___stderrp expected to be defined in /usr/lib/libSystem.B.dylib
/Applications/Vidalia.app.new/Contents/MacOS/polipo undefined reference
to ___stdoutp expected to be defined in /usr/lib/libSystem.B.dylib
Trace/BPT trap

(I renamed the app folder - the old version is working fine with the new
Tor binary).

http://www.fastmail.fm - Email service worth paying for. Try it for free

To unsubscribe, send an e-mail to majordomo at torproject.org with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

More information about the tor-talk mailing list