Mac and Linux versions of the Tor anonymity browser just received a fix for a critical vulnerability that leaks users’ IP addresses. The fix is triggered when users click on links that begin with file:// rather than the more common https:// and http:// address prefixes. Until the final fix is in place, updated versions of Tor may not behave properly when navigating to file:// addresses. There’s no evidence the flaw has been actively exploited on the Internet or dark web to obtain the IP addresses or Tor users.”]

