[or-cvs] [tor/release-0.2.2 162/162] put 0.2.1.28 release notes in place too

arma at torproject.org arma at torproject.org
Mon Dec 20 03:06:43 UTC 2010


Author: Roger Dingledine <arma at torproject.org>
Date: Thu, 16 Dec 2010 19:20:18 -0500
Subject: put 0.2.1.28 release notes in place too
Commit: ef5b3680c6c4f630b670681f73967f4535b786e1

---
 ReleaseNotes |   19 +++++++++++++++++++
 1 files changed, 19 insertions(+), 0 deletions(-)

diff --git a/ReleaseNotes b/ReleaseNotes
index 30d35dd..617a14a 100644
--- a/ReleaseNotes
+++ b/ReleaseNotes
@@ -3,6 +3,25 @@ This document summarizes new features and bugfixes in each stable release
 of Tor. If you want to see more detailed descriptions of the changes in
 each development snapshot, see the ChangeLog file.
 
+Changes in version 0.2.1.28 - 2010-12-17
+  Tor 0.2.1.28 does some code cleanup to reduce the risk of remotely
+  exploitable bugs. We also took this opportunity to change the IP address
+  for one of our directory authorities, and to update the geoip database
+  we ship.
+
+  o Major bugfixes:
+    - Fix a remotely exploitable bug that could be used to crash instances
+      of Tor remotely by overflowing on the heap. Remote-code execution
+      hasn't been confirmed, but can't be ruled out. Everyone should
+      upgrade. Bugfix on the 0.1.1 series and later.
+
+  o Directory authority changes:
+    - Change IP address and ports for gabelmoo (v3 directory authority).
+
+  o Minor features:
+    - Update to the December 1 2010 Maxmind GeoLite Country database.
+
+
 Changes in version 0.2.1.27 - 2010-11-23
   Yet another OpenSSL security patch broke its compatibility with Tor:
   Tor 0.2.1.27 makes relays work with openssl 0.9.8p and 1.0.0.b. We
-- 
1.7.1



More information about the tor-commits mailing list