Wed May 17 07:13:37 2017 UTC ()
Changes in version 0.3.0.7 - 2017-05-15
  Tor 0.3.0.7 fixes a medium-severity security bug in earlier versions
  of Tor 0.3.0.x, where an attacker could cause a Tor relay process to
  exit. Relays running earlier versions of Tor 0.3.0.x should upgrade;
  clients are not affected.

  o Major bugfixes (hidden service directory, security):
    - Fix an assertion failure in the hidden service directory code,
      which could be used by an attacker to remotely cause a Tor relay
      process to exit. Relays running earlier versions of Tor 0.3.0.x
      should upgrade. This security issue is tracked as TROVE-2017-002.
      Fixes bug 22246; bugfix on 0.3.0.1-alpha.

  o Minor features:
    - Update geoip and geoip6 to the May 2 2017 Maxmind GeoLite2
      Country database.

  o Minor features (future-proofing):
    - Tor no longer refuses to download microdescriptors or descriptors
      if they are listed as "published in the future". This change will
      eventually allow us to stop listing meaningful "published" dates
      in microdescriptor consensuses, and thereby allow us to reduce the
      resources required to download consensus diffs by over 50%.
      Implements part of ticket 21642; implements part of proposal 275.

  o Minor bugfixes (Linux seccomp2 sandbox):
    - The getpid() system call is now permitted under the Linux seccomp2
      sandbox, to avoid crashing with versions of OpenSSL (and other
      libraries) that attempt to learn the process's PID by using the
      syscall rather than the VDSO code. Fixes bug 21943; bugfix
      on 0.2.5.1-alpha.


(adam)
diff -r1.120 -r1.121 pkgsrc/net/tor/Makefile
diff -r1.80 -r1.81 pkgsrc/net/tor/distinfo
cvs diff -r1.120 -r1.121 pkgsrc/net/tor/Makefile (expand / switch to unified diff)

--- pkgsrc/net/tor/Makefile 2017/05/14 16:03:23 1.120
+++ pkgsrc/net/tor/Makefile 2017/05/17 07:13:37 1.121
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.120 2017/05/14 16:03:23 leot Exp $ 1# $NetBSD: Makefile,v 1.121 2017/05/17 07:13:37 adam Exp $
2 2
3DISTNAME= tor-0.3.0.6 3DISTNAME= tor-0.3.0.7
4CATEGORIES= net security 4CATEGORIES= net security
5MASTER_SITES= http://www.torproject.org/dist/ 5MASTER_SITES= http://www.torproject.org/dist/
6 6
7MAINTAINER= reezer@reezer.org 7MAINTAINER= reezer@reezer.org
8HOMEPAGE= http://www.torproject.org/ 8HOMEPAGE= http://www.torproject.org/
9COMMENT= Anonymizing overlay network for TCP 9COMMENT= Anonymizing overlay network for TCP
10LICENSE= modified-bsd 10LICENSE= modified-bsd
11 11
12USE_LANGUAGES= c99 12USE_LANGUAGES= c99
13USE_PKGLOCALEDIR= yes 13USE_PKGLOCALEDIR= yes
14GNU_CONFIGURE= yes 14GNU_CONFIGURE= yes
15 15
16CONFIGURE_ENV+= CPP=${CPP:Q} 16CONFIGURE_ENV+= CPP=${CPP:Q}
@@ -31,28 +31,28 @@ PKG_USERS_VARS= TOR_USER @@ -31,28 +31,28 @@ PKG_USERS_VARS= TOR_USER
31RCD_SCRIPTS= tor 31RCD_SCRIPTS= tor
32RCD_SCRIPT_SRC.tor= ${FILESDIR}/tor.in 32RCD_SCRIPT_SRC.tor= ${FILESDIR}/tor.in
33PKG_GROUPS= ${TOR_GROUP} 33PKG_GROUPS= ${TOR_GROUP}
34PKG_USERS= ${TOR_USER}:${TOR_GROUP} 34PKG_USERS= ${TOR_USER}:${TOR_GROUP}
35USER_GROUP= ${TOR_USER} ${TOR_GROUP} 35USER_GROUP= ${TOR_USER} ${TOR_GROUP}
36 36
37OWN_DIRS_PERMS+= ${PKG_HOME.${TOR_USER}} ${USER_GROUP} 0700 37OWN_DIRS_PERMS+= ${PKG_HOME.${TOR_USER}} ${USER_GROUP} 0700
38 38
39CONFIGURE_ARGS+= --localstatedir=${VARBASE} 39CONFIGURE_ARGS+= --localstatedir=${VARBASE}
40 40
41CONF_FILES+= ${PREFIX}/share/examples/tor/torrc.sample \ 41CONF_FILES+= ${PREFIX}/share/examples/tor/torrc.sample \
42 ${PKG_SYSCONFDIR}/torrc 42 ${PKG_SYSCONFDIR}/torrc
43 43
44PRINT_PLIST_AWK+= /^man\/man/ { $$0 = "$${PLIST.doc}" $$0 } 44PRINT_PLIST_AWK+= /^man\/man/ { $$0 = "$${PLIST.doc}" $$0 }
45PRINT_PLIST_AWK+= /^share\/doc/ { $$0 = "$${PLIST.doc}" $$0 } 45PRINT_PLIST_AWK+= /^share\/doc/ { $$0 = "$${PLIST.doc}" $$0 }
46 46
47FILES_SUBST+= PKG_HOME=${PKG_HOME.${TOR_USER}} 47FILES_SUBST+= PKG_HOME=${PKG_HOME.${TOR_USER}}
48FILES_SUBST+= TOR_USER=${TOR_USER} TOR_GROUP=${TOR_GROUP} 48FILES_SUBST+= TOR_USER=${TOR_USER} TOR_GROUP=${TOR_GROUP}
49 49
50INSTALL_MAKE_FLAGS+= sysconfdir=${PREFIX}/share/examples 50INSTALL_MAKE_FLAGS+= sysconfdir=${PREFIX}/share/examples
51 51
52CHECK_PORTABILITY_SKIP+=contrib/* 52CHECK_PORTABILITY_SKIP+=contrib/*
53 53
54.include "../../mk/bsd.prefs.mk" 54.include "../../mk/bsd.prefs.mk"
55 55
56.if !empty(PKGSRC_COMPILER:Mmipspro) 56.if !empty(PKGSRC_COMPILER:Mmipspro)
57CFLAGS+= -c99 57CFLAGS+= -c99
58.endif 58.endif
cvs diff -r1.80 -r1.81 pkgsrc/net/tor/distinfo (expand / switch to unified diff)

--- pkgsrc/net/tor/distinfo 2017/05/02 11:16:02 1.80
+++ pkgsrc/net/tor/distinfo 2017/05/17 07:13:37 1.81
@@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
1$NetBSD: distinfo,v 1.80 2017/05/02 11:16:02 wiz Exp $ 1$NetBSD: distinfo,v 1.81 2017/05/17 07:13:37 adam Exp $
2 2
3SHA1 (tor-0.3.0.6.tar.gz) = f336546a9a8d561735d1e7fdb669cedb0839d6ba 3SHA1 (tor-0.3.0.7.tar.gz) = a8c52e943f05761a9687ee84aff1c3a9c9bf3c33
4RMD160 (tor-0.3.0.6.tar.gz) = 2cf502b8be630e8e6dbf2cdebb6fe960ab95d663 4RMD160 (tor-0.3.0.7.tar.gz) = 40e17ff81474e2eae6ea60cfb601c62763cb1e3c
5SHA512 (tor-0.3.0.6.tar.gz) = 33983f8c0a32fc32e5586cb1da9a99c93b0502eecfb9db289723b275543ea01168cf1dd335e4c1c42ccf7991dd1d584286e764c1881f7d6ece928bbd109781cc 5SHA512 (tor-0.3.0.7.tar.gz) = f6538e6d8dd444d2eb01f0cce48ec51a0e9ab533027d8941f1577f31136782685a4e317ff62bf21dfb52666df8d04f5dc996c5a0ceadccb2ba4fd91653989ccd
6Size (tor-0.3.0.6.tar.gz) = 5779422 bytes 6Size (tor-0.3.0.7.tar.gz) = 5793734 bytes