TOR Tor Browser 6.5a2-hardened is released

Discussion in 'TOR | TAILS' started by survivalmonkey, Aug 3, 2016.

  1. survivalmonkey

    survivalmonkey Monkey+++

    A new hardened Tor Browser release is available. It can be found in the 6.5a2-hardened distribution directory and on the download page for hardened builds.

    This release features important security updates to Firefox.

    In addition to the changes from Tor Browser 6.5a2, this releases integrates Selfrando. For more details about Selfrando integration in Tor Browser, see the Q and A with Georg Koppen and the Selfrando git repository.

    Here is the full changelog since 6.5a1-hardened:

    • All Platforms
      • Update Firefox to 45.3.0esr
      • Update Tor to tor-
      • Update Torbutton to
        • Bug 19689: Use proper parent window for plugin prompt
        • Bug 19206: Avoid SOCKS auth and NEWNYM collisions when sharing a tor client
        • Bug 19417: Disable asm.js (but add code to clear on New Identity if enabled)
        • Bug 19273: Improve external app launch handling and associated warnings
        • Bug 8725: Block addon resource and url fingerprinting with nsIContentPolicy
      • Update HTTPS-Everywhere to 5.2.1
      • Update NoScript to
      • Bug 17406: Include Selfrando into our hardened builds
      • Bug 19417: Disable asmjs for now
      • Bug 19715: Disable the meek-google pluggable transport option
      • Bug 19714: Remove mercurius4 obfs4 bridge
      • Bug 19585: Fix regression test for keyboard layout fingerprinting
      • Bug 19515: Tor Browser is crashing in graphics code
      • Bug 18513: Favicon requests can bypass New Identity
      • Bug 19273: Write C++ patch for external app launch handling
      • Bug 16998: Isolate preconnect requests to URL bar domain
      • Bug 18923: Add script to run all Tor Browser regression tests
      • Bug 19478: Prevent millisecond resolution leaks in File API
      • Bug 19401: Fix broken PDF download button
      • Bug 19411: Don't show update icon if a partial update failed
      • Bug 19400: Back out GCC bug workaround to avoid asmjs crash
      • Bug 19735: Switch default search engine to DuckDuckGo
      • Bug 19276: Disable Xrender due to possible performance regressions
      • Bug 19725: Remove old updater files left on disk after upgrade to 6.x
    • Build System
      • All Platforms

    Continue reading...
survivalmonkey SSL seal warrant canary