Advisories » MGASA-2014-0364

Updated libtorrent-rasterbar packages fixes uPnP forwarding all ports

Publication date: 05 Sep 2014
Modification date: 05 Sep 2014
Type: security
Affected Mageia releases : 3 , 4

Description

Updated libtorrent-rasterbar packages fix security vulnerability:

The libtorrent-rasterbar library was opening UPNP port 0, causing all ports
to be forwarded from the router to the client machine.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=13582
• https://github.com/qbittorrent/qBittorrent/issues/1758
• https://lists.fedoraproject.org/pipermail/package-announce/2014-June/134652.html

SRPMS

3/core

• libtorrent-rasterbar-0.16.6-2.1.mga3

4/core

• libtorrent-rasterbar-0.16.17-1.mga4