Theo De Raadt

**Name of the Vulnerable Software and Affected Versions** Tor versions prior to 0.2.0.32 **Description** The issue is related to the improper processing of the `User` and `Group` configuration options, which could allow local users to gain privileges. This is possible due to unintended supplementary group memberships of the Tor process. **Recommendations** For versions prior to 0.2.0.32, update to version 0.2.0.32 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Intel Core 2 Extreme processor X6800 Intel Core 2 Duo desktop processor E6000 Intel Core 2 Duo desktop processor E4000 **Description** The issue involves the incorrect setting of the memory page Access (A) bit under certain circumstances, specifically when the code segment limit is near the end of a code page. This has an unknown impact and attack vectors on certain operating systems, excluding OpenBSD. **Recommendations** For Intel Core 2 Extreme processor X6800, consider consulting Intel support for guidance on potential workarounds or fixes. For Intel Core 2 Duo desktop processor E6000, consult Intel support for any available patches or configuration changes. For Intel Core 2 Duo desktop processor E4000, reach out to Intel support for information on resolving the issue. As a general mitigation measure, ensure that operating systems and software are updated to the latest versions to minimize potential risks.