2 security issues were fixed in new upstream release of Tor. From the https://blog.torproject.org/blog/tor-02512-and-0267-are-released: - Fix an issue that would allow a malicious client to trigger an assertion failure and halt a hidden service. Fixes bug 15600; bugfix on 0.2.1.6-alpha. Reported by "disgleirio". https://trac.torproject.org/projects/tor/ticket/15600 This was assigned CVE-2015-2928. - Fix a bug that could cause a client to crash with an assertion failure when parsing a malformed hidden service descriptor. Fixes bug 15601; bugfix on 0.2.1.5-alpha. Found by "DonnchaC". https://trac.torproject.org/projects/tor/ticket/15601 This was assigned CVE-2015-2929.
Created tor tracking bugs for this issue: Affects: fedora-all [bug 1209805] Affects: epel-all [bug 1209806]
tor-0.2.5.12-1.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.
tor-0.2.5.12-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report.
tor-0.2.5.12-1.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
tor-0.2.4.27-1.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.
tor-0.2.5.12-1.el7 has been pushed to the Fedora EPEL 7 stable repository. If problems still persist, please make note of it in this bug report.
tor-0.2.5.12-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report.