Topic: TOR Updates @ AskWoody

TOR Updates
Home » Forums » AskWoody support » Questions: Browsers and desktop software » Other browsers » TOR Updates
- This topic has 6 replies, 1 voice, and was last updated 2 days, 11 hours ago.
Author

Topic
New Reply
Alex5723
AskWoody Plus

October 14, 2022 at 1:18 am #2488161
Options

Reply
Quote

Tor Browser 11.5.4 all platforms

Release Notes

“Tor Browser 11.5.4 backports the following security updates from Firefox ESR 102.3 to to Firefox ESR 91.13 on Windows, macOS and Linux:

CVE-2022-40959
CVE-2022-40960
CVE-2022-40958
CVE-2022-40956
CVE-2022-40962
Tor Browser 11.5.4 updates GeckoView on Android to 102.3.0esr. We also backport the following Android-specific security updates from Firefox 104 and 105:

CVE-2022-36317
CVE-2022-38474
CVE-2022-40961”

Reply | Quote
Viewing 5 reply threads
Author

Replies
- Alex5723
  AskWoody Plus
  
  November 4, 2022 at 2:03 am #2494993
  Options
  
  Reply
  Quote
  
  Tor Browser 11.5.7
  
  Windows + macOS + Linux
  
  Bug tor-browser#41413: Backup intl.locale.requested in 11.5.x
  
  Reply | Quote
- Alex5723
  AskWoody Plus
  
  November 23, 2022 at 1:03 am #2500415
  Options
  
  Reply
  Quote
  
  Tor Browser 11.5.8 all platforms
  
  Release notes
  
  Tor Browser 11.5.8 backports the following security updates from Firefox ESR 102.5 to to Firefox ESR 91.13 on Windows, macOS and Linux:
  
  CVE-2022-43680: In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.
  CVE-2022-45403: Service Workers might have learned size of cross-origin media files
  CVE-2022-45404: Fullscreen notification bypass
  CVE-2022-45405: Use-after-free in InputStream implementation
  CVE-2022-45406: Use-after-free of a JavaScript Realm
  CVE-2022-45408: Fullscreen notification bypass via windowName
  CVE-2022-45409: Use-after-free in Garbage Collection
  CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy
  CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers
  CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers
  CVE-2022-45416: Keystroke Side-Channel Leakage
  CVE-2022-45420: Iframe contents could be rendered outside the iframe
  CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5
  
  Tor Browser 11.5.8 updates GeckoView on Android to Firefox ESR 102.5 and includes important security updates. Tor Browser 11.5.8 backports the following security updates from Firefox 107 to Firefox ESR 102.5 on Android:
  
  CVE-2022-45413: SameSite=Strict cookies could have been sent cross-site via intent URLs….
  
  Reply | Quote
- Alex5723
  AskWoody Plus
  
  December 7, 2022 at 12:31 pm #2504184
  Options
  
  Reply
  Quote
  
  Tor Browser 12.0
  
  Release notes
  
  Upgraded to Extended Support (Firefox) Release 102
  Multi-locale support for desktop
  Native Apple Silicon support
  HTTPS-Only by default for Android
  Prioritize .onion sites for Android…
  
  Full changelog…
  
  Reply | Quote
- Alex5723
  AskWoody Plus
  
  December 16, 2022 at 1:19 pm #2509177
  Options
  
  Reply
  Quote
  
  Tor Browser 12.0.1
  
  Release Notes
  
  Reply | Quote
- Alex5723
  AskWoody Plus
  
  January 20, 2023 at 12:44 pm #2525342
  Options
  
  Reply
  Quote
  
  Tor Browser 12.0.2
  
  Release notes
  
  Reply | Quote
- Alex5723
  AskWoody Plus
  
  March 18, 2023 at 2:20 pm #2544605
  Options
  
  Reply
  Quote
  
  Tor Browser 12.0.4
  
  Release notes
  
  Reply | Quote
Viewing 5 reply threads

Reply To: TOR Updates
You can use BBCodes to format your content.
Your account can't use all available BBCodes, they will be stripped before saving.

Your information:
Name (required):

Mail (will not be published) (required):

Website:

Cancel

Plus Membership

Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.

AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.

Welcome to our unique respite from the madness.

It's easy to post questions about Windows 11, Windows 10, Win8.1, Win7, Surface, Office, or browse through our Forums. Post anonymously or register for greater privileges. Keep it civil, please: Decorous Lounge rules strictly enforced. Questions? Contact Customer Support.

TOR Updates

Plus Membership

Search Newsletters

Search Forums

View the Forum

Search for Topics

Recent Topics

Recent blog posts

Key Links

TOR Updates

Plus Membership

Search Newsletters

Search Forums

View the Forum

Search for Topics

Recent Topics

Recent blog posts

Login and Registration

Key Links