openSUSE Recommended Update: Recommended update for tor ______________________________________________________________________________ Announcement ID: openSUSE-RU-2022:10165-1 Rating: moderate References: #1202336 Affected Products: openSUSE Backports SLE-15-SP3 openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for tor fixes the following issues: - tor 0.4.7.10 * IPFire location database did not have proper ARIN network allocations - affected circuit path selection and relay metrics - tor 0.4.7.9 (boo#1202336) * major fixes aimed at reducing memory pressure on relays * prevent a possible side-channel * major bugfix related to congestion control * major bugfix related to Vanguard L2 layer node selection Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2022-10165=1 - openSUSE Backports SLE-15-SP3: zypper in -t patch openSUSE-2022-10165=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 i586 ppc64le s390x x86_64): tor-0.4.7.10-bp154.2.6.1 tor-debuginfo-0.4.7.10-bp154.2.6.1 tor-debugsource-0.4.7.10-bp154.2.6.1 - openSUSE Backports SLE-15-SP3 (aarch64 i586 ppc64le s390x x86_64): tor-0.4.7.10-bp153.2.18.1 References: https://bugzilla.suse.com/1202336