Don't know if any one else has seen or taken a look at this. I don't know if this affects Tor, though I believe that we do use certificate renegotiation in the protocol, and that is the entry vector for this particular vulnerability:
"TLS Man-in-the-middle on renegotiation vulnerability made public" http://isc.sans.org/diary.html?storyid=7534 -- Marcus Griep —— Ακακια את.ψο´, 3°
