https://usn.ubuntu.com/usn/usn-3533-1/
** Changed in: transmission (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to transmission in Ubuntu.
https://bugs.launchpad.net/bugs/1743473
Title:
CVE-2018-5702: Mitigate dns rebinding attacks against daemon
Status in transmission package in Ubuntu:
Fix Released
Bug description:
Tavis Ormandy from Google's Project Zero reported a bug on the
transmission security list on November 30th 2017
This is discussed here:
https://github.com/transmission/transmission/pull/468
Fix for this issue was pushed to transmission/master, please apply the
fix for Ubuntu.
Impact class: remote code execution.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/transmission/+bug/1743473/+subscriptions
--
Mailing list: https://launchpad.net/~desktop-packages
Post to : [email protected]
Unsubscribe : https://launchpad.net/~desktop-packages
More help : https://help.launchpad.net/ListHelp
