Musi waKurume 23, 2020, iyo Tor Project yakaburitsa imwe update kuTor Browser kune vhezheni 9.0.7, iyo inogadzirisa nyaya dzekuchengetedza muTor router uye inoshandura zvakanyanya maitiro ebrowser pakusarudza iyo yakachengeteka zvakanyanya (Yakachengeteka) kuseta.
Iyo yakanyanya kuchengetedzeka nhanho inoreva kuti JavaScript yakadzimwa nekusarudzika kune ese masaiti. Nekudaro, nekuda kwenyaya muNoScript yekuwedzera, ichi chinogumira parizvino chinogona kupfuurwa. Sekugadzirisa, vanogadzira Tor Browser vakaita kuti zvisaite kuti JavaScript imhanye kana yaiswa padanho repamusoro rekuchengetedza.
Izvi zvinogona kutyora chiitiko cheTor Browser kune vese vashandisi vane yakanyanya kuchengetedza modhi inogoneswa, sezvo zvisingachagoneke kugonesa JavaScript kuburikidza neNoScript marongero.
Kana iwe uchida kudzosa yakapfuura bhurawuza maitiro, ingangoita kwechinguva, unogona kuzviita nemaoko, sezvinotevera:
- Vhura tab itsva.
- Nyora nezve: config mubhadha yekero uye tinya Enter.
- Mubhara yekutsvaga pasi pekero bar pinda: javascript.enabled
- Tinya kaviri pamutsetse wasara, iyo "Kukosha" ndima inofanira kuchinja kubva panhema kuenda pachokwadi
Iyo yakavakirwa-mukati Tor network router yakagadziridzwa kune shanduro 0.4.2.7. Izvo zvinokanganisa zvinotevera zvakagadziriswa mushanduro itsva:
- Yakagadziriswa bug (CVE-2020-10592) iyo yakabvumira chero munhu kuita kurwisa kweDoS pane relay kana midzi dhairekitori server, zvichikonzera CPU kuwandisa, kana kurwiswa kubva kudhairekitori maseva ivo (kwete midzi chete), zvichikonzera CPU kuwandisa kwe vashandisi vese network.
Targeted CPU overload inogona kushandiswa kutanga nguva yekurwiswa, zvichibatsira kudzima vashandisi kana masevhisi akavanzwa. - Yakagadziriswa CVE-2020-10593, iyo inogona kukonzeresa kure kure yekuyeuka iyo inogona kutungamira kushandiswazve kweketani yechinyakare.
- Zvimwe zvikanganiso uye zvakasiiwa
Source: linux.org.ru