Security update for tor
This update for tor fixes vulnerabilities that allowed some
traffic confirmation, DoS and other attacks (bsc#1070849):
- CVE-2017-8819: Replay-cache ineffective for v2 onion services
- CVE-2017-8820: Remote DoS attack against directory authorities
- CVE-2017-8821: An attacker can make Tor ask for a password
- CVE-2017-8822: Relays can pick themselves in a circuit path
- CVE-2017-8823: Use-after-free in onion service v2
- Submitted by Andreas Stieger (AndreasStieger)
Fixed bugs
bnc#1070849
VUL-0: tor: CVE-2017-8819,CVE-2017-8820,CVE-2017-8821,CVE-2017-8822,CVE-2017-8813: multiple vulnerabilities