a new version of Tor Browser 9.0.7, focused on anonymity, security and privacy. The browser is focused on providing anonymity, security and privacy, all traffic is redirected only through the Tor network. It is impossible to contact directly through the regular network connection of the current system, which does not allow tracking the real IP of the user (in the case of a browser hack, attackers can access the system network settings, so products such as Whonix should be used to completely block possible leaks). Tor Browser builds are prepared for Linux, Windows, macOS and Android.
Components have been updated in the new release ΠΈ where vulnerabilities have been fixed. Tor has fixed a DoS vulnerability that could create too much CPU overhead when accessing attacker-controlled Tor directory servers. NoScript resolves an issue that allows a workaround to run JavaScript code in "Safest" protection mode via to the URI "data:".
In addition, the developers of Tor Browser additional protection and, if the "Safest" mode is enabled, automatically completely disable JavaScript at the javascript.enabled setting level in about:config. This change prevents NoScript from whitelisting sites for "Safest" selective deactivation (you can manually change the value of javascript.enabled to return the old behavior). After the Tor developers make sure that all loopholes for bypassing "Safest" are accurately covered in NoScript, it is possible that additional protection will be removed.
Source: opennet.ru