Ubuntu
transmission package

  1. Bug #500625
  2. Comment #21

Comment 21 for bug 500625

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package transmission - 1.80~b1-0ubuntu2

---------------
transmission (1.80~b1-0ubuntu2) lucid; urgency=low

  * SECURITY UPDATE: fix arbitrary file overwrite via crafted torrent file
    - debian/patches/CVE-2010-0012.patch: adjust metainfo.c to check for '../'
    - CVE-2010-0012
    - LP: #500625
 -- Jamie Strandboge <email address hidden> Thu, 07 Jan 2010 10:50:13 -0600