What's new in Tor Browser Portable 5.5.3
Jun 1, 2016
- Update Firefox to 38.7.0esr
- Update OpenSSL to 1.0.1s
- Update NoScript to 2.9.0.4
- Update HTTPS Everywhere to 5.1.4
- Bug 18030: Isolate favicon requests on Page Info dialog
- Bug 18297: Use separate Noto JP,KR,SC,TC fonts
- Bug 18170: Make sure the homepage is shown after an update as well
- Update Torbutton to 1.9.4.4:
- Bug 16990: Don't mishandle multiline commands
- Bug 18144: about:tor update arrow position is wrong
- Bug 16725: Allow resizing with non-default homepage
- Translation updates
New in Tor Browser Portable 5.5.2 (Jun 1, 2016)
- Update Firefox to 38.6.1esr
- Update NoScript to 2.9.0.3
New in Tor Browser Portable 5.5.1 (Jun 1, 2016)
- All Platforms:
- Bug 18168: Don't clear an iframe's window.name (fix of #16620)
- Bug 18137: Add two new obfs4 default bridges
- Windows:
- Bug 18169: Whitelist zh-CN UI font
New in Tor Browser Portable 5.5 (Jun 1, 2016)
- All Platforms:
- Update Firefox to 38.6.0esr
- Update libevent to 2.0.22-stable
- Update NoScript to 2.9.0.2
- Update Torbutton to 1.9.4.3
- Bug 16990: Show circuit display for connections using multi-party channels
- Bug 18019: Avoid empty prompt shown after non-en-US update
- Bug 18004: Remove Tor fundraising donation banner
- Bug 16940: After update, load local change notes
- Bug 17108: Polish about:tor appearance
- Bug 17568: Clean up tor-control-port.js
- Bug 16620: Move window.name handling into a Firefox patch
- Bug 17351: Code cleanup
- Translation updates
- Update Tor Launcher to 0.2.7.8:
- Bug 18113: Randomly permutate available default bridges of chosen type
- Bug 13313: Bundle a fixed set of fonts to defend against fingerprinting
- Bug 10140: Add new Tor Browser locale (Japanese)
- Bug 17428: Remove Flashproxy
- Bug 13512: Load a static tab with change notes after an update
- Bug 9659: Avoid loop due to optimistic data SOCKS code (fix of #3875)
- Bug 15564: Isolate SharedWorkers by first-party domain
- Bug 16940: After update, load local change notes
- Bug 17759: Apply whitelist to local fonts in @font-face (fix of #13313)
- Bug 17009: Shift and Alt keys leak physical keyboard layout (fix of #15646)
- Bug 17790: Map the proper SHIFT characters to the digit keys (fix of #15646)
- Bug 17369: Disable RC4 fallback
- Bug 17442: Remove custom updater certificate pinning
- Bug 16620: Move window.name handling into a Firefox patch
- Bug 17220: Support math symbols in font whitelist
- Bug 10599+17305: Include updater and build patches needed for hardened builds
- Bug 18115+18104+18071+18091: Update/add new obfs4 bridge
- Bug 18072: Change recommended pluggable transport type to obfs4
- Bug 18008: Create a new MAR Signing key and bake it into Tor Browser
- Bug 16322: Use onion address for DuckDuckGo search engine
- Bug 17917: Changelog after update is empty if JS is disabled
- Windows:
- Bug 17250: Add localized font names to font whitelist
- Bug 16707: Allow more system fonts to get used on Windows
- Bug 13819: Ship expert bundles with console enabled
- Bug 17250: Fix broken Japanese fonts
- Bug 17870: Add intermediate certificate for authenticode signing
New in Tor Browser Portable 5.0.7 (Jun 1, 2016)
- All Platforms:
- Update NoScript to 2.9
- Update HTTPS Everywhere to 5.1.2
- Bug 17931: Tor Browser crashes in LogMessageToConsole()
- Bug 17875: Discourage editing of torrc-defaults
New in Tor Browser Portable 5.0.6 (Jun 1, 2016)
- Bug 17877: Tor Browser 5.0.5 is using the wrong Mozilla build tag
New in Tor Browser Portable 5.0.5 (Jun 1, 2016)
- Update Firefox to 38.5.0esr
- Update Tor to 0.2.7.6
- Update OpenSSL to 1.0.1q
- Update NoScript to 2.7
- Update HTTPS Everywhere to 5.1.1
- Bug 17207: Hide MIME types and plugins from websites
- Bug 16909+17383: Adapt to HTTPS-Everywhere build changes
- Bug 16863: Avoid confusing error when loop.enabled is false
- Bug 17502: Add a preference for hiding "Open with" on download dialog
- Bug 17446: Prevent canvas extraction by third parties (fixup of #6253)
- Bug 16441: Suppress "Reset Tor Browser" prompt
- Bug 17747: Add ndnop3 as new default obfs4 bridge
- Update Torbutton to 1.9.3.7:
- Bug 16990: Avoid matching '250 ' to the end of node name
- Bug 17565: Tor fundraising campaign donation banner
- Bug 17770: Fix alignments on donation banner
- Bug 17792: Include donation banner in some non en-US Tor Browsers
- Translation updates
New in Tor Browser Portable 5.0.4 (Jun 1, 2016)
- Update Firefox to 38.4.0esr
- Update NoScript to 2.6.9.39
- Update Torbutton to 1.9.3.5
- Bug 9263: Spoof Referer when leaving a .onion domain
- Bug 16735: about:tor should accommodate different fonts/font sizes
- Bug 16937: Don't translate the homepage/spellchecker dictionary string
- Bug 17164: Don't show text-select cursor on circuit display
- Bug 17351: Remove unused code
- Translation updates
- Bug 16937: Remove the en-US dictionary from non en-US Tor Browser bundles
- Bug 17318: Remove dead ScrambleSuit bridge
- Bug 17473: Update meek-amazon fingerprint
- Bug 16983: Isolate favicon requests caused by the tab list dropdown
- Bug 17102: Don't crash while opening a second Tor Browser
- Bug 16906: Don't depend on Windows crypto DLLs
New in Tor Browser Portable 5.0.3 (Jun 1, 2016)
- This release features important security updates to Firefox.
- We fixed a number of regressions from our switch to ESR 38 back in August and reduced keyboard layout fingerprinting to mention just some highlights.
- These and all the other changes can be found in the complete changelog since 5.0.2:
- All Platforms:
- Update Firefox to 38.3.0esr
- Update Torbutton to 1.9.3.4
- Bug 16887: Update intl.accept_languages value
- Bug 15493: Update circuit display on new circuit info
- Bug 16797: brandShorterName is missing from brand.properties
- Bug 14429: Make sure the automatic resizing is disabled
- Translation updates
- Bug 7446: Tor Browser should not "fix up" .onion domains (or any domains)
- Bug 16837: Disable Firefox Hotfix updates
- Bug 16855: Allow blobs to be downloaded on first-party pages (fixes mega.nz)
- Bug 16781: Allow saving pdf files in built-in pdf viewer
- Bug 16842: Restore Media tab on Page information dialog
- Bug 16727: Disable about:healthreport page
- Bug 16783: Normalize NoScript default whitelist
- Bug 16775: Fix preferences dialog with security slider set to "High"
- Bug 13579: Update download progress bar automatically
- Bug 15646: Reduce keyboard layout fingerprinting in KeyboardEvent
- Bug 17046: Event.timeStamp should not reveal startup time
- Bug 16872: Fix warnings when opening about:downloads
- Bug 17097: Fix intermittent crashes when using the print dialog
- Windows
- Bug 16906: Fix Mingw-w64 compilation breakage
New in Tor Browser Portable 5.0.2 (Jun 1, 2016)
- All Platforms:
- Update Firefox to 38.2.1esr
- Update NoScript to 2.6.9.36