This bug was fixed in the package transmission - 1.80~b1-0ubuntu2
---------------
transmission (1.80~b1-0ubuntu2) lucid; urgency=low
* SECURITY UPDATE: fix arbitrary file overwrite via crafted torrent file
- debian/patches/CVE-2010-0012.patch: adjust metainfo.c to check for '../'
- CVE-2010-0012
- LP: #500625
-- Jamie Strandboge <[email protected]> Thu, 07 Jan 2010 10:50:13 -0600
** Changed in: transmission (Ubuntu Lucid)
Status: In Progress => Fix Released
--
Local file overwriting due to directory traversal
https://bugs.launchpad.net/bugs/500625
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
