Tor 0.3.0.8 release with the elimination of DoS vulnerabilities in the handler-hidden services
By Prempal Singh
Presented corrective releases toolkit Tor 0.3.0.7, 0.2.4.29, 0.2.5.14, 0.2.6.12, and 0.2.9.11, used for the organization of the anonymous Tor network.
The new editions of two vulnerabilities eliminated ( the CVE-2017-0375 and the CVE-2017-0376 ), allowing the attacker to achieve the collapse of hidden service, so hidden services administrators are advised not to delay the installation of the update.
The most important fixes also celebrated the removal of several bugs related to the handling of keys, which can lead to reduced reliability of the Tor-gateways.