Updated libtorrent-rasterbar packages fixes security vulnerability
Publication date: 05 Nov 2015Modification date: 05 Nov 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-5685
Description
The lazy_bdecode function in BitTorrent DHT bootstrap server (bootstrap-dht ) allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing." Note while this CVE was reported against BitTorrent DHT Bootstrapt server, the same vulnerable code is available in libtorrent-rasterbar (CVE-2015-5685).
References
SRPMS
5/core
- libtorrent-rasterbar-0.16.18-1.1.mga5