CVE-2012-6129
Published: 31 December 2012
Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro transport protocol packets."
Notes
Author | Note |
---|---|
seth-arnold | transmission team may update patch based on how libutp upstream patches the issue |
Priority
Status
Package | Release | Status |
---|---|---|
transmission Launchpad, Ubuntu, Debian |
hardy |
Ignored
(end of life)
|
lucid |
Not vulnerable
(code not present)
|
|
oneiric |
Released
(2.33-0ubuntu2.1)
|
|
precise |
Released
(2.51-0ubuntu1.3)
|
|
quantal |
Released
(2.61-0ubuntu2.2)
|
|
upstream |
Released
(2.74)
|
|
Patches: upstream: https://trac.transmissionbt.com/changeset/13646 |