The developers of the anonymous operating system Tails have released an emergency update, version 6.8.1, to address a critical security vulnerability in the Tor browser. The update includes a crucial fix to the Tor Browser, updating it to version 13.5.7, which addresses the vulnerability known as MFSA 2024-51. This vulnerability, related to the misuse of memory after it has been freed (use-after-free), could potentially allow an attacker to take full control of the browser. According to Mozilla, this vulnerability has been actively exploited in attacks targeting the Tor Browser.
Tails 6.8.1 can be updated automatically for users with version 6.0 and above. However, if the automatic update does not work or if any issues arise during the update process, the developers recommend performing a manual update of the system.
Users also have the option to install Tails 6.8.1 on a new USB drive. Step-by-step instructions are provided for installation on Windows, MacOS, Linux, or through the command line in Debian and Ubuntu using GNUPG. It is important to note that choosing to install on a USB drive instead of updating will result in the loss of all data stored on the drive.