A vulnerability has been discovered in Freenet, which can lead to deanonymization due to path folding.
Package | net-p2p/freenet on all architectures |
---|---|
Affected versions | < 0.7.5_p1497 |
Unaffected versions | >= 0.7.5_p1497 |
Freenet is an encrypted network without censorship.
This release fixes a severe vulnerability in path folding that allowed to distinguish between downloaders and forwarders with an adapted node that is directly connected via opennet.
This release fixes a severe vulnerability in path folding that allowed to distinguish between downloaders and forwarders with an adapted node that is directly connected via opennet.
There is no known workaround at this time.
All Freenet users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-p2p/freenet-0.7.5_p1497"
Release date
July 24, 2024
Latest revision
July 24, 2024: 1
Severity
normal
Exploitable
remote
Bugzilla entries