Package: tor
Severity: grave
Version: 0.2.1.26-1
The most recently uploaded openssl package contains a fix for
CVE-2010-3864, the libssl threading vulnerability (re #603709).
Unfortunately that patch breaks Tor relays on renegotiation again.
The Tor people are working on a workaround for that.
Cheers,
--
| .''`. ** Debian GNU/Linux **
Peter Palfrader | : :' : The universal
http://www.palfrader.org/ | `. `' Operating System
| `- http://www.debian.org/
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
