Tor浏览器13.0a1|Tor Browser 13.0a1 (Windows, macOS, Linux)
时间:2023-07-27 来源:torproject 作者:理查德 条评论
Tor 浏览器 13.0a1 现在可以从 Tor 浏览器下载页面和我们的发行版目录中获得。
此版本将 Firefox 更新到 115.0.2esr,包括错误修复、稳定性改进和重要的安全更新。这是一个仅限桌面平台的版本(Windows,macOS和Linux),但Android应该在未来几周内可用。
这是我们在 13.0 系列中的第一个 alpha 版本,代表了从 Firefox 102-esr 到 Firefox 115-esr 的过渡。这是建立在一年的上游Firefox更改的基础上的,因此alpha测试人员应该会遇到问题。如果您发现任何问题,请在我们的 gitlab 或 Tor 项目论坛上报告。
我们已经开始了一年一度的 esr 过渡审计,我们回顾了 Mozilla 一年的工作,着眼于会对 Tor 浏览器用户产生负面影响的隐私和安全问题。这将在我们将 13.0 alpha 系列转换为稳定系列之前完成。有风险的用户应保留在基于 102-esr 的 12.5 稳定系列上,该系列将继续接收安全更新,直到 13.0 alpha 提升为稳定版。
我们要感谢志愿者贡献者cypherpunks1对tor-browser#26277,tor-browser#33955,tor-browser#41399和tor-browser#41791的修复。如果您想做出贡献,可以在此处找到我们的问题跟踪器。
完整更新日志
自 Tor 浏览器 12.5a7 以来的完整更新日志是:
- 所有平台
- 更新的翻译
- 将 NoScript 更新到 11.4.25
- 将 OpenSSL 更新到 3.0.9
- 已更新至 1.20.6
- 将 tor 更新为 0.4.8.2-alpha
- 错误或浏览器#40577:在DDG洋葱的清单中添加“建议网址”
- 错误 tor-browser-build#40885:雪花的凹凸版本到 v2.6.0
- 错误 tor-browser-build#40887:将 Webtunnel 版本更新到 38eb5505
- 错误浏览器#41092:启用跟踪查询参数剥离
- Bug tor-browser#41399:更新Mozilla的Bug 1675054补丁,以启用HTTP洋葱的brotli编码
- 错误 tor-browser#41759:将基本浏览器恢复为每晚 115 次
- 错误 tor-browser#41796:将 Tor 浏览器变基为 Firefox 115
- Windows + macOS + Linux
- 将火狐浏览器更新到 115.0.2esr
- 错误 tor-browser#26277:启用“最安全”设置后,使用 duckduckgo 进行搜索应始终使用非 Javascript 站点进行搜索
- 错误或浏览器#33955:从菜单中选择“复制图像”会将源URL泄漏到剪贴板。此数据通常被其他应用程序取消引用。
- 错误 tor-browser#41741:重构域隔离器和新电路
- 错误 tor-browser#41834:隐藏可卸载附加组件的“无法删除 - 了解更多信息”菜单行
- 错误 tor-browser#41842:从 Torbutton 中删除旧的删除逻辑
- 错误 tor-browser#41845:停止为非 PBM 用户强制(错误的)首选项值
- 错误 tor-browser#41854:无法覆盖下载垃圾邮件保护以允许合法下载
- Bug tor-browser#41874:附加徽章中的视觉和A11回归
- 构建系统
- 所有平台
- Bug tor-browser-build#40089: Clean up usage of get-moz-build-date script
- Bug tor-browser-build#40410: Get rid of python2
- Bug tor-browser-build#40487: Bump Python version
- 错误 tor-browser-build#40802:删除使 WASI 可重现的补丁
- Bug tor-browser-build#40854:更新到OpenSSL 3.0
- Bug tor-browser-build#40855:更新 Mozilla 115 的工具链
- 错误 tor-browser-build#40868:将锈撞到 1.69.0
- Bug tor-browser-build#40886:使用 Arch Linux 的说明更新自述文件
- 错误 tor-browser-build#40889:将 mullvad sha256sums URL 添加到工具/签名/下载-unsigned-sha256sums-gpg-signatures-from-people-tpo
- Bug tor-browser-build#40894:修复了keyring/boklm.gpg的格式
- 错误 tor-browser-build#40898:将文档从 tor-browser-spec/processes/ReleaseProcess 添加到 gitlab 问题模板
- 窗户
- 错误 tor-browser-build#40832:统一 mingw-w64-clang 32+64 位
- Linux目录
- Bug tor-browser-build#40102:从 Debian Jessie 迁移到 Debian Stretch 用于我们的 Linux 构建
- 所有平台
New Alpha Release: Tor Browser 13.0a1 (Windows, macOS, Linux)
Tor Browser 13.0a1 is now available from the Tor Browser download page and also from our distribution directory.
This release updates Firefox to 115.0.2esr, including bug fixes, stability improvements and important security updates. This is a Desktop platform only release (Windows, macOS, and Linux), but Android should be available in the coming weeks.
This is our first alpha release in the 13.0 series and represents a transition from Firefox 102-esr to Firefox 115-esr. This builds on a year's worth of upstream Firefox changes, so alpha-testers should expect to run into issues. If you find any issues, please report them on our gitlab or on the Tor Project forum.
We have started our annual esr transition audit, where we review Mozilla's year's worth of work with an eye for privacy and security issues that would negatively affect Tor Browser users. This will be completed before we transition the 13.0 alpha series to stable. At-risk users should remain on the 102-esr based 12.5 stable series which will continue to receive security updates until 13.0 alpha is promoted to stable.
We would like to thank volunteer contributor cypherpunks1 for their fixes for tor-browser#26277, tor-browser#33955, tor-browser#41399, and tor-browser#41791. If you would like to contribute, our issue tracker can be found here.
Full changelog
The full changelog since Tor Browser 12.5a7 is:
- All Platforms
- Updated Translations
- Updated NoScript to 11.4.25
- Updated OpenSSL to 3.0.9
- Updated Go to 1.20.6
- Updated tor to 0.4.8.2-alpha
- Bug tor-browser#40577: Add "suggest url" in DDG onion's manifest
- Bug tor-browser-build#40885: Bump version of snowflake to v2.6.0
- Bug tor-browser-build#40887: Update Webtunnel version to 38eb5505
- Bug tor-browser#41092: Enable tracking query parameters stripping
- Bug tor-browser#41399: Update Mozilla's patch for Bug 1675054 to enable brotli encoding for HTTP onions as well
- Bug tor-browser#41759: Rebase Base Browser to 115 nightly
- Bug tor-browser#41796: Rebase Tor Browser to Firefox 115
- Windows + macOS + Linux
- Updated Firefox to 115.0.2esr
- Bug tor-browser#26277: When "Safest" setting is enabled searching using duckduckgo should always use the Non-Javascript site for searches
- Bug tor-browser#33955: Selecting "Copy image" from menu leaks the source URL to the clipboard. This data is often dereferenced by other applications.
- Bug tor-browser#41741: Refactor the domain isolator and new circuit
- Bug tor-browser#41834: Hide "Can't Be Removed - learn more" menu line for uninstallable add-ons
- Bug tor-browser#41842: Remove the old removal logics from Torbutton
- Bug tor-browser#41845: Stop forcing (bad) pref values for non-PBM users
- Bug tor-browser#41854: Download Spam Protection cannot be overridden to allow legitimate downloads
- Bug tor-browser#41874: Visual & A11 regressions in add-on badges
- Build System
- All Platforms
- Bug tor-browser-build#40089: Clean up usage of get-moz-build-date script
- Bug tor-browser-build#40410: Get rid of python2
- Bug tor-browser-build#40487: Bump Python version
- Bug tor-browser-build#40802: Drop the patch for making WASI reproducible
- Bug tor-browser-build#40854: Update to OpenSSL 3.0
- Bug tor-browser-build#40855: Update toolchains for Mozilla 115
- Bug tor-browser-build#40868: Bump Rust to 1.69.0
- Bug tor-browser-build#40886: Update README with instructions for Arch linux
- Bug tor-browser-build#40889: Add mullvad sha256sums URL to tools/signing/download-unsigned-sha256sums-gpg-signatures-from-people-tpo
- Bug tor-browser-build#40894: Fix format of keyring/boklm.gpg
- Bug tor-browser-build#40898: Add doc from tor-browser-spec/processes/ReleaseProcess to gitlab issue templates
- Windows
- Bug tor-browser-build#40832: Unify mingw-w64-clang 32+64 bits
- Linux
- Bug tor-browser-build#40102: Move from Debian Jessie to Debian Stretch for our Linux builds
- All Platforms
