Delivery-Date: Fri, 12 Feb 2016 01:27:36 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	FREEMAIL_FROM,RCVD_IN_DNSWL_MED,T_DKIM_INVALID,T_RP_MATCHES_RCVD
	autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id ED1811E08B8;
	Fri, 12 Feb 2016 01:27:33 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id A670A3904B;
	Fri, 12 Feb 2016 06:27:29 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 02AB139031
 for <tor-talk@lists.torproject.org>; Fri, 12 Feb 2016 06:27:26 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id z-do3IYGcnQw for <tor-talk@lists.torproject.org>;
 Fri, 12 Feb 2016 06:27:25 +0000 (UTC)
Received: from forward11h.cmail.yandex.net (forward11h.cmail.yandex.net
 [87.250.230.153])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "forwards.mail.yandex.net", Issuer "Yandex CA" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id BE1943901D
 for <tor-talk@lists.torproject.org>; Fri, 12 Feb 2016 06:27:25 +0000 (UTC)
X-Greylist: delayed 405 seconds by postgrey-1.34 at eugeni;
 Fri, 12 Feb 2016 06:27:25 UTC
Received: from web3h.yandex.ru (web3h.yandex.ru [IPv6:2a02:6b8:0:f05::13])
 by forward11h.cmail.yandex.net (Yandex) with ESMTP id 3332B21841
 for <tor-talk@lists.torproject.org>; Fri, 12 Feb 2016 09:20:06 +0300 (MSK)
Received: from web3h.yandex.ru (localhost [127.0.0.1])
 by web3h.yandex.ru (Yandex) with ESMTP id BF77D72827A2;
 Fri, 12 Feb 2016 09:20:05 +0300 (MSK)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail;
 t=1455258005; bh=FurGzvjMfomHnZO7a5yAcrnBTjtdb16oJnU5Ospv3b0=;
 h=From:To:Subject:Date;
 b=BbywO0GGMz5JtRHa1u5z7cAX5zrcfT5yFrnHt5ZdZyZNzpsag1d++Fn+L39JOzzJq
 9n43hkyU42XmH8AvOswUHJMlnWXXq2h97gCsrbae8jVDqUgtEl3i92HXtRTwJnMT+z
 QXZywWElBbcEjmlyjRAbrITkYnmsdqe57RWqwvdc=
Received: by web3h.yandex.ru with HTTP;
	Fri, 12 Feb 2016 09:20:05 +0300
From: Cain Ungothep <ungocain@yandex.com>
To: tor-talk@lists.torproject.org
MIME-Version: 1.0
Message-Id: <1639231455258005@web3h.yandex.ru>
X-Mailer: Yamail [ http://yandex.ru ] 5.0
Date: Fri, 12 Feb 2016 07:20:05 +0100
Subject: Re: [tor-talk] Is Tor Browser 5.5.1 vulnerable to any of the
	graphite font vulnerabilities?
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

> I would
> like to know if Tor Browser 5.5.1 is vulnerable. Thanks

Looks like it is:

https://gitweb.torproject.org/builders/tor-browser-bundle.git/commit/?id=7a36dbece35a307675f396a019dccf6e431efb44

That build corresponds to a branch which includes the commit that
supposedly fixed bug 1246093, and this commit was only pushed less than
48 hours ago.

NOTE: Torbutton's security slider at level "High" says "Some font rendering
features are disabled" and "[...] The Graphite font rendering mechanism
is disabled."  It would be good to know if this prevents the
vulnerability.

> [1]: https://www.mozilla.org/en-US/security/advisories/mfsa2016-14/
> [2]:
> http://blog.talosintel.com/2016/02/vulnerability-spotlight-libgraphite.html
> [3]:
> https://blog.torproject.org/blog/tor-browser-551-released#comment-155968
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

