Tails - Tails 3.14.1 is out

This release is an emergency release to fix a critical security vulnerability in Tor Browser.

It also fixes other security vulnerabilities . You should upgrade as soon as possible.

  1. Fixed arbitrary code execution in Tor Browser
  2. Upgrades and changes
  3. Known issues
  4. Tails fails to start a second time on some computers (#16389)
  5. Get Tails 3.14.1
  6. To upgrade your Tails USB stick and keep your persistent storage
  7. To install Tails on a new USB stick
  8. To download only
  9. What's coming up?

Fixed arbitrary code execution in Tor Browser

The Firefox team has reported seeing this vulnerability being abused on the Internet but has not disclosed further details.
Because Tor Browser in Tails is confined using AppArmor, the impact of this vulnerability in Tails is less than in other operating systems. For example, an exploited Tor Browser in Tails could have accessed your files in the Tor Browser and Persistent/Tor Browser folders but not elsewhere in your persistent storage. A second security vulnerability (a sandbox escape) has been revealed on Firefox and Tor Browser. This second vulnerability could only be used by other possible vulnerabilities in Firefox or Tor Browser as a way to do more damage to the operating system. Because in Tails, Tor Browser is already confined by AppArmor, we think that this second vulnerability is not severe in Tails. That is why, we are releasing 3.14.1 today, without waiting for a fix for this second vulnerability.

Upgrades and changes

For more details, read our changelog.

Known issues

Tails fails to start a second time on some computers (#16389 )

On some computers, after installing Tails to a USB stick, Tails starts a first time but fails to start a second time. In some cases, only BIOS (Legacy) was affected and the USB stick was not listed in the Boot Menu.

We partially fix this issue in 3.14.1 but are still investigating it, so if it happens to you, please report your findings by email to [email protected] . Mention the model of the computer and the USB stick. This mailing list is archived publicly.

To fix this issue:

  1. Reinstall your USB stick using the same installation method.

  2. Start Tails for the first time and set up an administration password .
  3. Choose Applications ▸ System Tools ▸ Root Terminal to open a Root Terminal.
  4. Execute the following command:

    sgdisk --recompute-chs /dev/bilibop

You can also test an experimental image:

  1. Download the .img file from our development server.

  2. Install it using the same installation methods.

    We don't provide any OpenPGP signature or other verification technique for this test image. Please only use it for testing.

See the list of long-standing issues .

Get Tails 3.14.1

To upgrade your Tails USB stick and keep your persistent storage

  • Automatic upgrades are available from 3.13, 3.13.1, 3.13.2, and 3.14 to 3.14.1.

  • If you cannot do an automatic upgrade or if Tails fails to start after an automatic upgrade, please try to do a manual upgrade .

To install Tails on a new USB stick

Follow our installation instructions:

  • Install from Windows
  • Install from macOS
  • Install from Linux

All the data on this USB stick will be lost.

To download only

If you don't need installation or upgrade instructions, you can directly download Tails 3.14.1:

  • For USB sticks (USB image)
  • For DVDs and virtual machines (ISO image)

What's coming up?

Tails 3.15 is scheduled for July 9.

Have a look at our roadmap to see where we are heading to.

We need your help and there are many ways to contribute to Tails (donating is only one of them). Come talk to us !

Similar Articles:

New Alpha Release: Tor Browser for Android

New Alpha Release: Tor Browser for Android

New Release: Tor Browser 8.0.4

New Release: Tor Browser 8.0.4

First official version of Tor Browser for Android released on the Play Store

First official version of Tor Browser for Android released on the Play Store

Tor Browser 8.0.9 update resolves add-on signing issue

Tor Browser 8.0.9 update resolves add-on signing issue