Tor Browser Update

Discussion in 'privacy technology' started by ronjor, Nov 30, 2016.

  1. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5 (All Platforms) (14-July-2022)
    Tor Browser 11.5 is now available through auto-update or from the Tor Browser download page and the distribution directory.

    Announcement
    Full Changelog
    * All Platforms
    * Update OpenSSL to 1.1.1q
    * Windows + OS X + Linux
    * Update Firefox to 91.11.0esr
    * Update Tor-Launcher to 0.2.37
    * Update Translations
    * Bug 11698: Incorporate Tor Browser Manual pages into Tor Browser [tor-browser]
    * Bug 19850: Disable Plaintext HTTP Clearnet Connections [tor-browser]
    * Bug 30589: Allowed fonts to render a bunch of missing scripts [tor-browser]
    * Bug 40458: Implement about:rulesets https-everywhere replacement [tor-browser]
    * Bug 40527: Remove https-everywhere from tor-browser alpha desktop [tor-browser-build]
    * Bug 40562: Reorganize patchset [tor-browser]
    * Bug 40598: Remove legacy settings read from TorSettings module [tor-browser]
    * Bug 40645: Migrate Moat APIs to Moat.jsm module [tor-browser]
    * Bug 40684: Misc UI bug fixes [tor-browser]
    * Bug 40773: Update the about:torconnect frontend page to match additional UI flows [tor-browser]
    * Bug 40774: Update about:preferences page to match new UI designs [tor-browser]
    * Bug 40775: about:ion should not be labeled as a Tor Browser page [tor-browser]
    * Bug 40793: moved Tor configuration options from old-configure.in to moz.configure [tor-browser]
    * Bug 40825: Redirect HTTPS-Only error page when not connected [tor-browser]
    * Bug 40912: Hide screenshots menu since we don't support it [tor-browser]
    * Bug 40916: Remove the browser.download.panel.shown preference [tor-browser]
    * Bug 40923: Consume country code to improve error report [tor-browser]
    * Bug 40966: Render emojis in bridgemoji with SVG files, and added emojii descriptions [tor-browser]
    * Bug 41011: Make sure the Tor Connection status is shown only in about:preferences#connection [tor-browser]
    * Bug 41023: Update manual URLs [tor-browser]
    * Bug 41035: OnionAliasService should use threadsafe ISupports [tor-browser]
    * Bug 41036: Add a preference to disable Onion Aliases [tor-browser]
    * Bug 41037: Fixed the connection preferences on the onboarding [tor-browser]
    * Bug 41039: Set 'startHidden' flag on tor process in tor-launcher [tor-browser]
    * OS X
    * Bug 40797: font-family: monospace renders incorrectly on macOS [tor-browser]
    * Bug 41004: Bundled fonts are not picked up on macOS [tor-browser]
    * Linux
    * Bug 41015: Add --name parameter to correctly setup WM_CLASS when running as native Wayland client [tor-browser]
    * Bug 41043: Hardcode the UI font on Linux [tor-browser]
    * Android
    * Update Fenix to 99.0.0b3
    * Build System
    * All Platforms
    * Bug 40288: Bump mmdebstrap version to 0.8.6 [tor-browser-build]
    * Bug 40426: Update Ubuntu base image to 22.04 [tor-browser-build]
    * Bug 40516: Remove aguestuser from tb_builders and torbutton.gpg [tor-browser-build]
    * Bug 40519: Add Alexis' latest PGP key to https-everywhere key ring [tor-browser-build]
    * Android
    * Update Go to 1.18.3
    * Bug 40433: Bump LLVM to 13.0.1 for android builds [tor-browser-build]
    * Bug 40470: Fix zlib build issue for android [tor-browser-build]
    * Bug 40485: Resolve Android reproducibility issues [tor-browser-build]
    * Windows + OS X + Linux
    * Bug 34451: Include Tor Browser Manual in packages during build [tor-browser-build]
    * Bug 40525: Update the mozconfig for tor-browser-91.9-11.5-2 [tor-browser-build]
     
  2. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5.1 (Windows, macOS, Linux) (26-July-2022)
    Tor Browser 11.5.1 is now available through auto-update or from the Tor Browser download page and the distribution directory.

    Announcement
    Full Changelog
    The full changelog since Tor Browser 11.5 is:
     
    Last edited: Jul 26, 2022
  3. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5.2 (Android, Windows, macOS, Linux) (29-August-2022)
    Tor Browser 11.5.2 is now available through auto-update or from the Tor Browser download page and the distribution directory.

    Announcement
    Full Changelog
    Tor Browser 11.5.2 is now available from the Tor Browser download page and also from our distribution directory.

    Tor Browser 11.5.2 updates Firefox on Windows, macOS, and Linux to 91.13.0esr.

    This version includes important security updates to Firefox:
    We use the opportunity as well to update various other components of Tor Browser:
    • Tor 0.4.7.10
    • NoScript 11.4.9
    The full changelog since Tor Browser 11.5.1 is:
    • All Platforms
      • Update Tor to 0.4.7.10
      • Update NoScript to 11.4.9
    • Windows + macOS + Linux
    • Build System
      • Windows + macOS + Linux
        • Update Go to 1.17.3
      • Android
        • Update Go to 1.18.5
     
  4. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5.3 (Android ONLY) (29-August-2022)
    Tor Browser 11.5.3 is now available through auto-update or from the Tor Browser download page and the distribution directory.

    Announcement
    Full Changelog
    * Android
    * Bug 40225: Bundled extensions don't get updated with Android Tor Browser
    updates (they stay stuck at the first installed version) [fenix]
    * Bug 41156: User-installed addons are broken on Android [tor-browser]
     
  5. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5.4 (Android, Windows, macOS, Linux) (12-October-2022)
    Tor Browser 11.5.4 is now available through auto-update or from the Tor Browser download page and the distribution directory.

    Announcement | Full Changelog
    The full changelog since Tor Browser 11.5.3 is:
     
  6. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
  7. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
  8. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    New Release: Tor Browser 11.5.8 (Android,Windows, macOS, Linux) (22-November-2022)
    Tor Browser 11.5.8 is now available through auto-update or from the Tor Browser download page and the Distribution Directory.

    Announcement | Full Changelog
    Tor Browser 11.5.8 - November 18 2022
    * All Platforms
    * Update Translations
    * Update OpenSSL to 1.1.1s
    * Update NoScript to 11.4.12
    * Update tor to 0.4.7.11
    * Update zlib to 1.2.13
    * Bug 40622: Update obfs4proxy to 0.0.14 in Tor Browser [tor-browser-build]
    * Windows + macOS + Linux
    * Bug 31064: Letterboxing is enabled in privileged contexts too [tor-browser]
    * Bug 32411: Consider adding about:tor and others to the list of pages that do not need letter-boxing [tor-browser]
    * Bug 41413: Backup intl.locale.requested in 11.5.x [tor-browser]
    * Bug 41434: Letterboxing bypass through secondary tab (popup/popunder...) [tor-browser]
    * Bug 41456: Backport ESR 102.5 security fixes to 91.13-based Tor Browser [tor-browser]
    * Bug 41460: Migrate new identity and security level preferences in 11.5.8 [tor-browser]
    * Bug 41463: Backport fix for CVE-2022-43680 [tor-browser]
    * Android
    * Update GeckoView to 102.5.0esr
    * Bug 41461: Backport Android-specific 107-rr security fixes to 102.5-esr based Geckoview [tor-browser]
    * Build
    * All Platforms
    * Update Go to 1.18.8
    * Bug 40658: Create an anti-censorship team keyring [tor-browser-build]
    * Bug 40690: Revert fix for zlib build break [tor-browser-build]
     
  9. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0 (Android, Windows, macOS, Linux) has been released. (07-December-2022)
    Tor Browser 12.0 is now available from the Tor Browser download page and also from our distribution directory.

    Announcement | Full Changelog
    Tor Browser 12.0 - December 5 2022
    * All Platforms
    * Update Translations
    * Update tor to 0.4.7.12
    * Bug 17228: Consideration for disabling/trimming referrers within TBB [tor-browser]
    * Bug 24686: In Tor Browser context, should network.http.tailing.enabled be set to false? [tor-browser]
    * Bug 27127: Audit and enable HTTP/2 push [tor-browser]
    * Bug 27258: font whitelist means we don't have to set gfx.downloadable_fonts.fallback_delay [tor-browser]
    * Bug 40057: ensure that CSS4 system colors are not a fingerprinting vector [tor-browser]
    * Bug 40058: ensure no locale leaks from new Intl APIs [tor-browser]
    * Bug 40183: Consider disabling TLS ciphersuites containing SHA-1 [tor-browser]
    * Bug 40251: Clear obsolete prefs after torbutton!27 [tor-browser]
    * Bug 40406: Remove Presentation API related prefs [tor-browser]
    * Bug 40491: Don't auto-pick a v2 address when it's in Onion-Location header [tor-browser]
    * Bug 40494: Update Startpage and Blockchair onion search providers [tor-browser]
    * Bug 40580: Add support for Ukranian (uk) [tor-browser-build]
    * Bug 40646: Don't build Español AR anymore [tor-browser-build]
    * Bug 40674: Add Secondary Snowflake Bridge [tor-browser-build]
    * Bug 40783: Review 000-tor-browser.js and 001-base-profile.js for 102 [tor-browser]
    * Bug 41098: Compare Tor Browser's and GeckoView's profiles [tor-browser]
    * Bug 41125: Review Mozilla 1732792: retry polling requests without proxy [tor-browser]
    * Bug 41154: Review Mozilla 1765167: Deprecate Cu.import [tor-browser]
    * Bug 41164: Add some #define for the base-browser section [tor-browser]
    * Bug 41306: Typo "will not able" in "Tor unexpectedly exited" dialog [tor-browser]
    * Bug 41317: Tor Browser leaks banned ports in network.security.ports.banned [tor-browser]
    * Bug 41345: fonts: windows whitelist contains supplemental fonts [tor-browser]
    * Bug 41398: Disable Web MIDI API [tor-browser]
    * Bug 41406: Do not define `--without-wasm-sandboxed-libraries` if `WASI_SYSROOT` is defined [tor-browser]
    * Bug 41420: Remove brand.dtd customization on nightly [tor-browser]
    * Bug 41457: Remove more Mozilla permissions [tor-browser]
    * Bug 41473: Add support for Albanian (sq) [tor-browser]
    * Windows + macOS + Linux
    * Update Firefox to 102.5.0esr
    * Bug 17400: Decide how to use the multi-lingual Tor Browser in the alpha/release series [tor-browser]
    * Bug 40595: Migrate to 102 on desktop [tor-browser-buid]
    * Bug 40638: Visit our website link after build-to-build upgrade in Nightly channel points to old v2 onion [tor-browser-build]
    * Bug 40648: Do not customize update.locale in multi-lingual builds [tor-browser-build]
    * Bug 40853: use Subprocess.jsm to launch tor [tor-browser]
    * Bug 40933: Migrate remaining tor-launcher functionality to tor-browser [tor-browser]
    * Bug 41011: The Internet and Tor status are visible when opening the settings [tor-browser]
    * Bug 41044: Content exceeding the height of the connection settings modals [tor-browser]
    * Bug 41116: Review Mozilla 1226042: add support for the new 'system-ui' generic font family [tor-browser]
    * Bug 41117: Review Mozilla 1512851: Add Share Menu to File Menu on macOS [tor-browser]
    * Bug 41283: Toolbar buttons missing their label attribute [tor-browser]
    * Bug 41284: Stray security-level- fluent ids [tor-browser]
    * Bug 41287: New identity button inactive if added after customization [tor-browser]
    * Bug 41292: moreFromMozilla pane in about:preferences in 12.0a2 [tor-browser]
    * Bug 41293: Incomplete branding in German with 12.0a2 [tor-browser]
    * Bug 41337: Add a title to the new identity confirmation [tor-browser]
    * Bug 41342: Update the New Identity dialog to the proton modal style [tor-browser]
    * Bug 41344: Authenticated Onion Services do not prompt for auth key in 12.0 alpha series [tor-browser]
    * Bug 41352: Update or drop the show manual logic in torbutton [tor-browser]
    * Bug 41369: Consider a different list-order for locales in language menu [tor-browser]
    * Bug 41374: Missing a few torconnect strings in the DTD [tor-browser]
    * Bug 41377: Hide `Search for more languages...` from Language selector in multi-locale build [tor-browser]
    * Bug 41378: Inform users when Tor Browser sets their language automatically [tor-browser]
    * Bug 41385: Bootstrap failure is logged but not raised up to about:torconnect [tor-browser]
    * Bug 41386: The new tor-launcher has a problem when another Tor is running [tor-browser]
    * Bug 41387: New identity and new circuit ended up inside history [tor-browser]
    * Bug 41400: Missing onionAuthViewKeys causes "Onion Services Keys" dialog to be empty. [tor-browser]
    * Bug 41401: Missing some mozilla icons because we still loading them from "chrome://browser/skin" rather than "chrome://global/skin/icons" [tor-browser]
    * Bug 41404: Fix blockchair-onion search extension [tor-browser]
    * Bug 41409: Circuit display is broken on Tails [tor-browser]
    * Bug 41410: Opening and closing HTTPS-Only settings make the identity panel shrink [tor-browser]
    * Bug 41412: New Identity shows "Tor Browser" instead of "Restart Tor Browser" in unstranslated locales [tor-browser]
    * Bug 41417: Prompt users to restart after changing language [tor-browser]
    * Bug 41429: TorConnect and TorSettings are initialized twice [tor-browser]
    * Bug 41435: Add a Tor Browser migration function [tor-browser]
    * Bug 41436: The new tor-launcher handles arrays in the wrong way [tor-browser]
    * Bug 41437: Use the new media query for dark theme for the "Connected" pill in bridges [tor-browser]
    * Bug 41449: Onion authentication's learn more should link to the offline manual [tor-browser]
    * Bug 41451: Still using requestedLocales in torbutton [tor-browser]
    * Bug 41455: Tor Browser dev build cannot launch tor [tor-browser]
    * Bug 41458: Prevent `mach package-multi-locale` from actually creating a package [tor-browser]
    * Bug 41462: Add anchors to bridge-moji and onion authentication entries [tor-browser]
    * Bug 41466: Port YEC 2022 campaign to Tor Browser 12.0 (Desktop) [tor-browser]
    * Bug 41495: Clicking on "View Logs" in the "Establishing Connection" page takes you to about:preferences#connection and not logs [tor-browser]
    * Bug 41498: The Help panel is empty in 12.0a4 [tor-browser]
    * Bug 41508: Update the onboarding link for 12.0 [tor-browser]
    * Windows
    * Bug 41149: Review Mozilla 1762576: Firefox is not allowing Symantec DLP to inject DLL into the browser for Data Loss Prevention software [tor-browser]
    * Bug 41278: Create Tor Browser styled pdf logo similar to the vanilla Firefox one [tor-browser]
    * Bug 41426: base-browser nightly fails to build for windows-i686 [tor-browser]
    * macOS
    * Bug 23451: Adapt font whitelist to changes on macOS (zh locales) [tor-browser]
    * Bug 41004: The Bangla font does not display correctly on MacOs [tor-browser]
    * Bug 41108: Remove privileged macOS installation from 102 [tor-browser]
    * Bug 41294: Bookmarks manager broken in 12.0a2 on MacOS [tor-browser]
    * Bug 41348: cherry-pick macOS OSSpinLock replacements [tor-browser]
    * Bug 41370: Find a way to ship custom default bookmarks without changing language-packs on macOS [tor-browser]
    * Bug 41372: "Japanese" language menu item is localised in multi-locale testbuild (on mac OS) [tor-browser]
    * Bug 41379: The new tor-launcher is broken also on macOS [tor-browser]
    * Linux
    * Bug 40359: Tor Browser Launcher has Wrong Icon [tor-browser]
    * Bug 40626: Define the replacements for generic families on Linux [tor-browser-build]
    * Bug 41163: Fixing loading of bundled fonts on linux [tor-browser]
    * Android
    * Update GeckoView to 102.5.0esr
    * Bug 40014: Check which of our mobile prefs and configuration changes are still valid for GeckoView [tor-browser]
    * Bug 40631: Stop bundling HTTPS Everywhere on Android [tor-browser-build]
    * Bug 41394: Implement a setting to always prefer onion sites [tor-browser]
    * Bug 41465: Port YEC 2022 campaign to Tor Browser 12.0 (Android) [tor-browser]
    * Build System
    * All Platforms
    * Update Go to 1.19.3
    * Bug 23656: Use .mozconfig files in tor-browser repo for rbm builds [tor-browser-build]
    * Bug 28754: make testbuild-android-armv7 stalls during sha256sum step [tor-browser-build]
    * Bug 40049: gpg_keyring should allow for array of keyrings [rbm]
    * Bug 40397: Create a new build target to package tor daemon, pluggable transports and dependencies [tor-browser-build]
    * Bug 40407: Bump binutils version to pick up security improvements for Windows users [tor-browser-build]
    * Bug 40585: Prune the manual more [tor-browser-build]
    * Bug 40587: Migrate tor-browser-build configs from gitolite to gitlab repos [tor-browser-build]
    * Bug 40591: Rust 1.60 not working to build 102 on Debian Jessie [tor-browser-build]
    * Bug 40592: Consider re-using our LLVM/Clang to build Rust [tor-browser-build]
    * Bug 40593: Update signing scripts to take into account new project names and layout [tor-browser-build]
    * Bug 40607: Add alpha-specific release prep template [tor-browser-build]
    * Bug 40610: src-*.tar.xz tarballs are missing in https://dist.torproject.org/torbrowser/12.0a1/ [tor-browser-build]
    * Bug 40612: Migrate Release Prep template to Release Prep - Stable [tor-browser-build]
    * Bug 40619: Make sure translations are taken from gitlab.tpo and not git.tpo [tor-browser-build]
    * Bug 40627: Add boklm to torbutton.gpg [torbrowser-build]
    * Bug 40634: Update the project/browser path in tools/changelog-format-blog-post and other files [tor-browser-build]
    * Bug 40636: Remove https-everywhere from projects/browser/config [tor-browser-build]
    * Bug 40639: Remove tor-launcher references [tor-browser-build]
    * Bug 40643: Update Richard's key in torbutton.gpg [tor-browser-build]
    * Bug 40645: Remove unused signing keys and create individual keyrings for Tor Project developers [tor-browser-build]
    * Bug 40655: Published tor-expert-bundle tar.gz files should not include their tor-browser-build build id [tor-browser-build]
    * Bug 40656: Improve get_last_build_version in tools/signing/nightly/sign-nightly [tor-browser-build]
    * Bug 40660: Update changelog-format-blog-post script to point gitlab rather than gitolite [tor-browser-build]
    * Bug 40662: Make base-browser nightly build from tag [tor-browser-build]
    * Bug 40663: Do not ship bookmarks in tor-browser-build anymore [tor-browser-build]
    * Bug 40667: Update Node.js to 12.22.12 [tor-browser-build]
    * Bug 40669: Remove HTTPS-Everywhere keyring [tor-browser-build]
    * Bug 40671: Update langpacks URL [tor-browser-build]
    * Bug 40675: Update tb_builders list in set-config [tor-browser-build]
    * Bug 40690: Revert fix for zlib build break [tor-browser-build]
    * Bug 41308: Use the same branch for Desktop and GeckoView [tor-browser]
    * Bug 41321: Delete various master branches after automated build/testing scripts are updated [tor-browser]
    * Bug 41340: Opt in to some of the NIGHTLY_BUILD features [tor-browser]
    * Bug 41357: Enable browser toolbox debugging by default for dev builds [tor-browser]
    * Bug 41446: Multi-lingual alpha bundles break make fetch [tor-browser]
    * Windows + macOS + Linux
    * Bug 40499: Update firefox to enable building from new 'base-browser' tag [tor-browser-build]
    * Bug 40500: Add base-browser package project [tor-browser-build]
    * Bug 40501: Makefile updates to support building base-browser packages [tor-browser-build]
    * Bug 40503: Update Release Prep issue template with base-browser and privacy browser changes [tor-browser-build]
    * Bug 40547: Remove container/remote_* from rbm.conf [tor-browser-build]
    * Bug 40581: Update reference to master branches [tor-browser-build]
    * Bug 40641: Fetch Firefox locales from l10n-central [tor-browser-build]
    * Bug 40678: Force all 11.5 users to update through 11.5.8 before 12.0 [tor-browser-build]
    * Bug 40685: Remove targets/nightly/var/mar_locales from rbm.conf [tor-browser-build]
    * Bug 40686: Add a temporary project to fetch Fluent tranlations for base-browser [tor-browser-build]
    * Bug 40691: Update firefox config to point to base-browser branch rather than a particular tag in nightly [tor-browser-build]
    * Bug 40699: Fix input_files in projects/firefox-l10n/config [tor-browser-build]
    * Bug 41099: Update+comment the update channels in update_responses.config.yaml [tor-browser]
    * Windows
    * Bug 29318: Use Clang for everything on Windows [tor-browser-buid]
    * Bug 29321: Use mingw-w64/clang toolchain to build tor [tor-browser-build]
    * Bug 29322: Use mingw-w64/clang toolchain to build OpenSSL [tor-browser-build]
    * Bug 40409: Upgrade NSIS to 3.08 [tor-browser-build]
    * Bug 40666: Fix compiler depedencies for Firefox on Windows [tor-browser-build]
    * macOS
    * Bug 40067: Rename "OS X" to "macOS" [tor-browser-build]
    * Bug 40158: Add support for macOS AArch64 [tor-browser-build]
    * Bug 40439: Create universal x86-64/arm64 mac builds [tor-browser-build]
    * Bug 40605: Reworked the macOS toolchain creation [tor-browser-build]
    * Bug 40620: Update macosx-sdk to 11.0 [tor-browser-build]
    * Bug 40687: macOS nightly builds with packaged locales fail [tor-browser-build]
    * Bug 40694: aarch64 tor-expert-bundle for macOS is not exported as part of the browser build [tor-browser-build]
    * Linux
    * Bug 31321: Add cc -> gcc link to projects/gcc [tor-browser-build]
    * Bug 40621: Update namecoin patches for linted TorButton [tor-browser-build]
    * Bug 40659: Error building goservice for linux in nightly build [tor-browser-build]
    * Bug 41343: Add -without-wam-sandboxed-libraries to mozconfig-linux-x86_64-dev for local builds [tor-browser]
    * Android
    * Bug 40574: Improve tools/signing/android-signing [tor-browser-build]
    * Bug 40604: Fix binutils build on android [tor-browser-build]
    * Bug 40640: Extract Gradle in the toolchain setup [tor-browser-build]
    * Bug 41304: Add Android-specific targets to makefiles [tor-browser]
     
  10. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.1 (Android, Windows, macOS, Linux) has been released. (16-December-2022)
    Tor Browser 12.0.1 is now available from the Tor Browser download page and also from our distribution directory.

    Announcement | Full Changelog
    The full changelog since Tor Browser 12.0 is:
     
  11. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.2 (Android, Windows, macOS, Linux) has been released. (19-January-2023)
    Tor Browser 12.0.2 is now available from the Tor Browser download page and also from our distribution directory.

    Announcement | Full Changelog
    Tor Browser 12.0.2 - January 18, 2023
    * All Platforms
    * Updated tor to 0.4.7.13
    * Updated NoScript to 11.4.14
    * Bug 40565: do something with security.tls.version.enable-deprecated [tor-browser]
    * Bug 40713: Use the new tor-browser l10n branch in Firefox [tor-browser-build]
    * Bug 40727: Update list of Snowflake STUN servers in default bridge line [tor-browser-build]
    * Bug 41506: Remove TrustCor root certificates [tor-browser]
    * Bug 41525: Drop locales from torbutton, since we will inject them in tor-browser-build [tor-browser]
    * Windows + macOS + Linux
    * Updated Firefox to 102.7esr
    * Bug 26504: Browser version in about:preferences showing the Firefox ESR version [tor-browser]
    * Bug 32308: Stop inner letterbox jiggling as border is dragged [tor-browser]
    * Bug 41375: Clean unused strings [tor-browser]
    * Bug 41393: about:tbupdate semantic and accessibility problems [tor-browser]
    * Bug 41522: Backport torbutton ⇾ tor-browser migration to 12.0 series [tor-browser]
    * Bug 41524: about:tbupdate needs UTF-8 [tor-browser]
    * Bug 41539: Crypto warning weaknesses [tor-browser]
    * Bug 41549: tor freeze when receiving too many http proxy requests on socks port [tor-browser]
    * Bug 41561: Maximize warning is broken (regression) [tor-browser]
    * Bug 41563: Old placeholders used in TorStrings.jsm [tor-browser]
    * macOS
    * Bug 40716: Unable to update to 12.0.1 on Apple Silicon-based Mac [tor-browser-build]
    * Android
    * Updated GeckoView to 102.7esr
    * Bug 41571: Backport Android-specific Firefox 109 to ESR 102.7-based Tor Browser [tor-browser]
    * Build System
    * All Platforms
    * Updated Go to 1.19.5
    * Bug 40735: Add command to list which translation components need to be updated [tor-browser-build]
    * Bug 40739: tor-expert-bundle should include ClientTransportPlugin torrc lines for each pluggable transport [tor-browser-build]
    * Windows + macOS + Linux
    * Bug 40734: Backport the translation project [tor-browser-build]
    * Bug 40746: Remove pt_config.json from pt dir [tor-browser-build]
    * macOS
    * Bug 40706: macos-signer-stapler should wait for user interaction before attempting stapling [tor-browser-build]
     
    Last edited: Jan 19, 2023
  12. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    Tor and I2P networks hit by wave of ongoing DDoS attacks
    By Sergiu Gatlan

    Tor Project's Executive Director Isabela Dias Fernandes revealed on Tuesday that a wave of distributed denial-of-service (DDoS) attacks has been targeting the network since at least July 2022.

    “At some points, the attacks impacted the network severely enough that users could not load pages or access onion services,” Fernandes said on Tuesday.

    “We have been working hard to mitigate the impacts and defend the network from these attacks. The methods and targets of these attacks have changed over time, and we are adapting as these attacks continue.”

    While the goal of these ongoing attacks or the identity of the threat actor(s) behind them are not yet known, Fernandes said the Tor team will keep tweaking the network's defenses to address this ongoing issue.

    The Tor Network team will also be expanded to include two new members focusing on .onion services development.

    “In the interest of protecting the Tor network and our global community, we chose to limit public information on the nature of those attacks for now,” Fernandes told BleepingComputer when we reached out for more information on the DDoS attacks.

    “To clarify, our services have not been down, but on occasion slow for some users, and it is important to note that the user experience is affected by a variety of factors, including what onion services are being used, or which relays get picked when they build a circuit through Tor.”

    DDoS attacks also hit the I2P network

    Tor is not the only anonymous communications network currently targeted by DDoS attacks. The I2P (short for Invisible Internet Project) peer-to-peer network has also been dealing with a massive attack for the last three days.

    As a result, I2P users might also experience issues due to some i2pd routers crashing with OOM (out of memory) errors when hit by this Denial-of-Service attack.

    “As you already know, the I2P network has been targeted by a Denial-of-Service attack for the past ~3 days. The attacker is flooding the network with malicious floodfill routers, which are responding incorrectly or not at all to other routers and feeding the network false information,” one of the I2P subreddit's mods said yesterday.

    “This results in performance and connectivity problems, because the floodfills provide peer information to the participants in the network. The result is a form of Sybil attack which is used to cause widespread denial of service.

    “This attack has degraded the performance of the network, but it remains intact and usable. Java I2P routers still appear to be handling the issues better than i2pd routers. Various mitigations should appear in dev builds of both Java and C++ routers in the next week.”

    Just as in Tor's case, the threat actors are using a variety of tactics as “the attack is starting / stopping / changing several times a day,” as I2P's project manager and core dev lead said in a Tuesday community meeting on IRC.
     
  13. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.3 (Android, Windows, macOS, Linux) has been released. (15-February-2023)
    Tor Browser 12.0.3 is now available from the Tor Browser download page and also from our distribution directory.

    Announcement | Full Changelog
     
    Last edited: Feb 15, 2023
  14. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.4 (All Platforms) has been released. (18-March-2023)
    Tor Browser 12.0.4 is now available from the Tor Browser download page and also from our distribution directory.

    Announcement | Full Changelog

    Full changelog
    The full changelog since Tor Browser 12.0.3 is:

     
    Last edited: Mar 18, 2023
  15. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    Thanks!
     
  16. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
  17. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.5 (All Platforms) has been released. (19-April-2023)
    Tor Browser 12.0.5 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    Version Tor Browser: 12.0.5
    Release Date, April 12, 2023

    For the most up-to-date information about this release, visit our website.
    Release Notes
    All Platforms

    Updated Translations
    Updated NoScript to 11.4.21
    Updated Go to 11.9.8
    Bug 41688: Rebase Tor Browser Stable to 102.10.0esr [tor-browser]

    Windows + macOS + Linux

    Updated Firefox to 102.10esr
    Bug 41526: “Cancel” button when establishing a connection should be gray [tor-browser]

    Android

    Updated GeckoView to 102.10esr
    Bug 41724: Backport Android-specific security fixes from Firefox 112 to ESR 102.10-based Tor Browser [tor-browser]

    Build System
    Windows

    Bug 40822: The Tor Browser installer doesn't run with mandatory ASLR on (0xc000007b) [tor-browser-build]

    Linux

    Bug 40828: Use http://archive.debian.org/debian-archive/ for jessie [tor-browser-build]
    Bug 40835: Update faketime URLs in projects/container-image/config [tor-browser-build]
     
    Last edited: Apr 20, 2023
  18. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.0.6 (All Platforms) has been released. (12-May-2023)
    Tor Browser 12.0.6 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    All Platforms

    Updated Translations
    Updated Go to 11.9.9
    Bug 41728: Pin bridges.torproject.org domains to Let's Encrypt's root cert public key [tor-browser]
    Bug 41756: Rebase Tor Browser Stable to 102.11.0esr [tor-browser]

    Windows + macOS + Linux

    Updated Firefox to 102.11esr
    Bug 40501: High CPU load after tor exits unexpectedly [tor-browser]

    Windows

    Bug 41683: Disable the network process on Windows [tor-browser]

    Android

    Updated GeckoView to 102.11esr

    Build System
    Windows + macOS + Linux

    Bug 41730: Bridge lines in tools/torbrowser/bridges.js out of date [tor-browser]

    macOS

    Bug 40844: Fix DMG reproducibility problem on 12.0.5 [tor-browser-build]
     
  19. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    14,881
    Location:
    Slovenia, EU
    https://blog.torproject.org/new-release-tor-browser-1207/
     
  20. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.5 (All Platforms) has been released. (22-June-2023)
    Tor Browser 12.5 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    Full changelog
    The full changelog since Tor Browser 12.0.7 is:

     
  21. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    163,038
    Location:
    Texas
    FYI: Tor Browser is very much still a thing and getting updates
     
  22. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.5.1 (All Platforms) has been released. (04-July-2023)
    Tor Browser 12.5.1 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    The full changelog since Tor Browser 12.5 is:

    • All Platforms
      • Updated Translations
      • Updated NoScript to 11.4.24
      • Bug tor-browser#41860: Rebase 12.5 stable to 102.13esr
    • Windows + macOS + Linux
      • Updated Firefox to 102.13.0esr
      • Bug tor-browser#41854: Download Spam Protection cannot be overridden to allow legitimate downloads
      • Bug tor-browser#41856: Onion service authorization prompt's key field does not get focus when clicked
      • Bug tor-browser#41858: 'Learn more' link in onboarding links to 12.0 release notes and not 12.5
    • Android
      • Updated GeckoView to 102.13.0esr
     
    Last edited: Jul 5, 2023
  23. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.5.2 (All Platforms) has been released. (02-August-2023)
    Tor Browser 12.5.2 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    The full changelog since Tor Browser 12.5.1 is:

    • All Platforms
      • Updated Translations
      • Updated NoScript to 11.4.26
      • Bug tor-browser#41908: Rebase stable 12.5 to 102.14esr
    • Windows + macOS + Linux
      • Updated Firefox to 102.14.0esr
    • Windows
      • Bug tor-browser#41761: xul.dll win crash tor-browser 12.5.1 (based on Mozilla Firefox 102.13.0esr) (64-Bit)
    • Android
      • Updated GeckoView to 102.14.0esr
      • Bug tor-browser#41928: Backport Android-specific security fixes from Firefox 116 to ESR 102.14 / 115.1 – based Tor Browser
    • Build System
     
  24. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.5.3 (All Platforms) has been released. (29-August-2023)
    Tor Browser 12.5.3 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    The full changelog since Tor Browser 12.5.2 is:
     
  25. 1PW

    1PW Registered Member

    Joined:
    Apr 2, 2010
    Posts:
    1,910
    Location:
    North of the 38th parallel.
    The Tor Browser 12.5.4 (All Platforms) has been released. (13-September-2023)
    Tor Browser 12.5.4 is now available from the Tor Browser download page and also from our distribution directory.

    Blog/Announcement | Full Changelog

    Tor Browser 12.5.4 - September 12, 2023
    * All Platforms
    * Updated Translations
    * Updated OpenSSL to 1.1.1w
    * Bug 42084: Race condition with language preferences may make spoof_english ineffective [tor-browser]
    * Bug 42090: Rebase release onto 102.15.1esr [tor-browser]
    * Windows + macOS + Linux
    * Updated Firefox to 102.15.1esr
    * Android
    * Updated GeckoView to 102.15.1esr
    * Build System
    * All Platforms
    * Updated Go to 1.20.8
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.