[tor-talk] Tor and Openssl bug CVE-2014-0160

Roger Dingledine arma at mit.edu
Mon Apr 7 23:17:47 UTC 2014

A new OpenSSL vulnerability on 1.0.1 through 1.0.1f is out today,
which can be used to reveal up to 64kB of memory to a connected client
or server.


The short version is: upgrade your openssl (unless you're running an
old one), and also more packages coming soon.


More information about the tor-talk mailing list