#16285: Make sure EME is no tracking risk in Tor Browser -------------------------------------------------+------------------------- Reporter: gk | Owner: gk Type: task | Status: | assigned Priority: Medium | Milestone: Component: Applications/Tor Browser | Version: Severity: Normal | Resolution: Keywords: ff52-esr, tbb-linkability, | Actual Points: GeorgKoppen201605, TorBrowserTeam201606 | Parent ID: | Points: Reviewer: | Sponsor: -------------------------------------------------+-------------------------
Comment (by gk): There have been quite some changes in EME-land since esr45. macOS and Linux have now DRM support as well and it seems EME is treated differently build-wise: now it is only disabled by pref: https://bugzilla.mozilla.org/show_bug.cgi?id=1300654. That might be related to clearkey getting built now even if we specify --disable-eme` in the .mozconfig file (adding exposure to security vulnerabilities: https://www.mozilla.org/en-US/security/advisories/mfsa2016-77/). And there is a different download path available in case AUS is down: https://bugzilla.mozilla.org/show_bug.cgi?id=1267495. That's just mentioning the "top highlights". We need to have a close look at EME for esr52. -- Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16285#comment:21> Tor Bug Tracker & Wiki <https://trac.torproject.org/> The Tor Project: anonymity online _______________________________________________ tor-bugs mailing list tor-bugs@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs