A ranar 23 ga Maris, 2020, Tor Project ya fitar da sabuntawa zuwa Tor Browser zuwa sigar 9.0.7, wanda ke gyara al'amurran tsaro a cikin na'ura mai ba da hanya tsakanin hanyoyin sadarwa na Tor kuma yana canza halayen mai binciken yayin zabar matakin saiti mafi aminci (Mafi Aminci).
Mafi amintaccen matakin yana nufin an kashe JavaScript ta tsohuwa don duk shafuka. Koyaya, saboda wani batu a cikin ƙarawar NoScript, ana iya ketare wannan iyakance a halin yanzu. A matsayin hanyar warwarewa, masu haɓaka Tor Browser sun sa JavaScript ba zai yiwu ya yi aiki ba lokacin da aka saita zuwa matakin tsaro mafi girma.
Wannan na iya karya ƙwarewar Tor Browser ga duk masu amfani tare da mafi girman yanayin tsaro, saboda ba zai yiwu a kunna JavaScript ta hanyar saitunan NoScript ba.
Idan kana buƙatar dawo da dabi'ar burauzar da ta gabata, aƙalla na ɗan lokaci, zaku iya yin ta da hannu, kamar haka:
- Bude sabon shafin.
- Rubuta game da: config a cikin adireshin adireshin kuma danna Shigar.
- A cikin mashigin bincike da ke ƙarƙashin mashin adireshi shigar da: javascript.enabled
- Danna sau biyu akan ragowar layin, filin "Value" yakamata ya canza daga karya zuwa gaskiya
An sabunta ginanniyar hanyar sadarwar Tor zuwa sigar 0.4.2.7. An gyara kurakurai masu zuwa a cikin sabon sigar:
- Kafaffen kwaro (CVE-2020-10592) wanda ya ba kowa damar kai harin DoS akan sabar relay ko tushen directory, yana haifar da cikar CPU, ko hari daga sabobin adireshi da kansu (ba kawai tushen tushen ba), yana haifar da cikar CPU. talakawa masu amfani da hanyar sadarwa.
Za a iya amfani da ƙwanƙwasa CPU da aka yi niyya a fili don ƙaddamar da hare-hare na lokaci, yana taimakawa ɓoye sunayen masu amfani ko sabis na ɓoye. - Kafaffen CVE-2020-10593, wanda zai iya haifar da ɗigon ƙwaƙwalwar nesa wanda zai iya haifar da sake amfani da sarkar da ta gabata.
- Wasu kurakurai da rashi
source: linux.org.ru