---
- branch: pkgsrc-2009Q2
  date: Thu Jul 16 09:23:44 UTC 2009
  files:
  - new: 1.63.4.1
    old: '1.63'
    path: pkgsrc/net/tor/Makefile
    pathrev: pkgsrc/net/tor/Makefile@1.63.4.1
    type: modified
  - new: 1.34.4.1
    old: '1.34'
    path: pkgsrc/net/tor/distinfo
    pathrev: pkgsrc/net/tor/distinfo@1.34.4.1
    type: modified
  id: 20090716T092344Z.2ea0d7c70d78661306a51a308b7c78773c420af2
  log: "Pullup ticket #2813 - requested by obache\ntor: security update\n\nRevisions
    pulled up:\n- net/tor/Makefile\t\t1.64\n- net/tor/distinfo\t\t1.35\n---\nModule
    Name:\tpkgsrc\nCommitted By:\tobache\nDate:\t\tThu Jul  9 11:52:31 UTC 2009\n\nModified
    Files:\n\tpkgsrc/net/tor: Makefile distinfo\n\nLog Message:\nUpdate tor to 0.2.0.35.\nmaintainer
    update request via PR 41688.\n\nChanges in version 0.2.0.35 - 2009-06-24\n  o
    Security fix:\n    - Avoid crashing in the presence of certain malformed descriptors.\n
    \     Found by lark, and by automated fuzzing.\n    - Fix an edge case where a
    malicious exit relay could convince a\n      controller that the client's DNS
    question resolves to an internal IP\n      address. Bug found and fixed by \"optimist\";
    bugfix on 0.1.2.8-beta.\n\n  o Major bugfixes:\n    - Finally fix the bug where
    dynamic-IP relays disappear when their\n      IP address changes: directory mirrors
    were mistakenly telling\n      them their old address if they asked via begin_dir,
    so they\n      never got an accurate answer about their new address, so they\n
    \     just vanished after a day. For belt-and-suspenders, relays that\n      don't
    set Address in their config now avoid using begin_dir for\n      all direct connections.
    Should fix bugs 827, 883, and 900.\n    - Fix a timing-dependent, allocator-dependent,
    DNS-related crash bug\n      that would occur on some exit nodes when DNS failures
    and timeouts\n      occurred in certain patterns. Fix for bug 957.\n\n  o Minor
    bugfixes:\n    - When starting with a cache over a few days old, do not leak\n
    \     memory for the obsolete router descriptors in it. Bugfix on\n      0.2.0.33;
    fixes bug 672.\n    - Hidden service clients didn't use a cached service descriptor
    that\n      was older than 15 minutes, but wouldn't fetch a new one either,\n
    \     because there was already one in the cache. Now, fetch a v2\n      descriptor
    unless the same descriptor was added to the cache within\n      the last 15 minutes.
    Fixes bug 997; reported by Marcus Griep.\n"
  module: pkgsrc
  subject: 'CVS commit: [pkgsrc-2009Q2] pkgsrc/net/tor'
  unixtime: '1247736224'
  user: tron