Please read this before reporting a bug:
http://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
http://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines
Do NOT report bugs when a package is just outdated, or it is in Unsupported. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#15325 - [libtorrent-rasterbar] arbitrary file overwrite vulnerability
Attached to Project:
Arch Linux
Opened by serph (serph) - Tuesday, 30 June 2009, 15:01 GMT-4
Last edited by Hugo Doria (hdoria) - Saturday, 04 July 2009, 19:41 GMT-4
Opened by serph (serph) - Tuesday, 30 June 2009, 15:01 GMT-4
Last edited by Hugo Doria (hdoria) - Saturday, 04 July 2009, 19:41 GMT-4
|
DetailsDescription:
Versions older than 0.14.4 are vulnerable: http://census-labs.com/news/2009/06/08/libtorrent-rasterbar/ Additional info: libtorrent-rasterbar < 0.14.4 affected There also doesn't seem to be a maintainer for the package |
This task depends upon
Closed by Hugo Doria (hdoria)
Saturday, 04 July 2009, 19:41 GMT-4
Reason for closing: Fixed
Additional comments about closing: Fixed on libtorrent-rasterbar 0.14.4-1
Saturday, 04 July 2009, 19:41 GMT-4
Reason for closing: Fixed
Additional comments about closing: Fixed on libtorrent-rasterbar 0.14.4-1
Compiled fine on x86_64