New Alpha Release: Tor Browser 14.5a3

by morgan | February 11, 2025

lead.png1200×675 463 KB

Tor Browser 14.5a3 is now available from the Tor Browser download page and also from our distribution directory.

This version includes important security updates to Firefox.

Send us your feedback

If you find a bug or have a suggestion for how we could improve this release, please let us know.

Full changelog

The full changelog since Tor Browser 14.5a2 is:

• All Platforms
  • Bug tor-browser#41065: navigator.storage "best effort" + "persistent" leak partitionSize/totalSpace entropy
  • Bug tor-browser#41921: Clean up initialisation and bridges conflict between TorSettings and TorConnect
  • Bug tor-browser#43308: Only allow "about:" pages to have access to contentaccessible branding assets
  • Bug tor-browser#43323: Expose a stable asset from chrome:// to identify Tor, Base, and Mullvad Browser
  • Bug tor-browser#43449: Rebase Tor Browser alpha onto 128.7.0esr
  • Bug tor-browser#43451: Backport security fixes from Firefox 135
  • Bug tor-browser-build#41362: Remove meek azure from the builtin bridges
• Windows + macOS + Linux
  • Updated Firefox to 128.7.0esr
  • Bug tor-browser#41831: Some .tor.onion sites are not displaying the underlying V3 onion address in alpha
  • Bug tor-browser#43254: Cancel Moat requests when no longer needed
  • Bug tor-browser#43386: Extension requests expose Firefox's minor version and custom app name
  • Bug tor-browser#43398: tor-urlbar-button-plain hover styling is overwritten by tor-button rule
  • Bug tor-browser#43406: 2 buttons displayed onion-available and connect when Tor daemon killed
  • Bug tor-browser#43461: Drop our wordmark padding
  • Bug tor-browser#43462: Use NetworkLinkService instead of Moat for the internet test
  • Bug tor-browser#43466: Drop unnecessary CSS rules in branding aboutDialog.css
• Windows
  • Bug tor-browser#43402: set browser.startup.blankWindow false
• macOS
  • Bug tor-browser#43468: ScreenCaptureKit framework should be a weak link
• Linux
  • Bug tor-browser-build#41297: Add video codecs dependencies (recommends) on the Debian package
• Android
  • Updated GeckoView to 128.7.0esr
  • Bug tor-browser#43198: Remove "Learn more" link from Android's no-internet error
  • Bug tor-browser#43199: Bootstrapping bar needs a little TLC on Android (Part 1)
  • Bug tor-browser#43222: All tor logs timestamps reset to current time when opening screen
  • Bug tor-browser#43351: Don't force ALL CAPS for the fenix snackbar action button text
  • Bug tor-browser#43359: Improper handling of TorBootstrapChangeListener with respect to system onDestroy() calls for HomeActivity
  • Bug tor-browser#43360: Replace custom variable isBeingRecreated with built-in isFinishing function
  • Bug tor-browser#43368: Add @Suppress for incorrect linting error "Overriding method should call super. onNewIntent"
• Build System
  • All Platforms
    • Updated Go to 1.22.12
    • Bug tor-browser-build#41281: Better dev defaults for fetch variable
    • Bug tor-browser-build#41324: Improve build signing ergonomics
    • Bug tor-browser-build#41345: Go autoupdates in 1.23 so add env var to prevent it in any step that has network access
    • Bug tor-browser-build#41357: keyring/anti-censorship.gpg is in GPG keybox database version 1 format
    • Bug tor-browser-build#41358: Update sign-tag script to handle rapid-release nightly branches
    • Bug rbm#40079: Make fetch: if_needed fetch existing branches
  • Windows + macOS + Linux
    • Bug tor-browser-build#41356: Add redirects to make 14.0a4 a watershed
  • macOS
    • Bug tor-browser-build#41350: Increase timeout in rcodesign-notary-submit