Debian Libtorrent-Rasterbar vulnerabilities

5 known vulnerabilities affecting debian/libtorrent-rasterbar.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2017-9847MEDIUMCVSS 5.5fixed in libtorrent-rasterbar 1.1.4-1 (bookworm)2017
CVE-2017-9847 [MEDIUM] CVE-2017-9847: libtorrent-rasterbar - The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote attackers ... The bdecode function in bdecode.cpp in libtorrent 1.1.3 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 1.1.4-1) bullseye: resolved (fixed in 1.1.4-1) forky: resolved (fixed in 1.1.4-1) sid: resolved (fixed in 1.1.4-1) trixie: resolved
debian
CVE-2016-5301HIGHCVSS 7.5fixed in libtorrent-rasterbar 1.1.0-1 (bookworm)2016
CVE-2016-5301 [HIGH] CVE-2016-5301: libtorrent-rasterbar - The parse_chunk_header function in libtorrent before 1.1.1 allows remote attacke... The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast. Scope: local bookworm: resolved (fixed in 1.1.0-1) bullseye: resolved (fixed in 1.1.0-1) forky: resolved (fixed in 1.1.0-1) sid: resolved (fixed in 1.1.0-1) trixie: resolv
debian
CVE-2016-7164HIGHCVSS 7.5fixed in libtorrent-rasterbar 1.1.1-1 (bookworm)2016
CVE-2016-7164 [HIGH] CVE-2016-7164: libtorrent-rasterbar - The construct function in puff.cpp in Libtorrent 1.1.0 allows remote torrent tra... The construct function in puff.cpp in Libtorrent 1.1.0 allows remote torrent trackers to cause a denial of service (segmentation fault and crash) via a crafted GZIP response. Scope: local bookworm: resolved (fixed in 1.1.1-1) bullseye: resolved (fixed in 1.1.1-1) forky: resolved (fixed in 1.1.1-1) sid: resolved (fixed in 1.1.1-1) trixie: resolved (fixed i
debian
CVE-2015-5685HIGHCVSS 7.5fixed in libtorrent-rasterbar 1.0.6-1 (bookworm)2015
CVE-2015-5685 [HIGH] CVE-2015-5685: libtorrent-rasterbar - The lazy_bdecode function in BitTorrent DHT bootstrap server (bootstrap-dht ) al... The lazy_bdecode function in BitTorrent DHT bootstrap server (bootstrap-dht ) allows remote attackers to execute arbitrary code via a crafted packet, related to "improper indexing." Scope: local bookworm: resolved (fixed in 1.0.6-1) bullseye: resolved (fixed in 1.0.6-1) forky: resolved (fixed in 1.0.6-1) sid: resolved (fixed in 1.0.6-1) trixie: resolved (
debian
CVE-2009-1760MEDIUMCVSS 5.8fixed in libtorrent-rasterbar 0.14.4-1 (bookworm)2009
CVE-2009-1760 [MEDIUM] CVE-2009-1760: libtorrent-rasterbar - Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorren... Directory traversal vulnerability in src/torrent_info.cpp in Rasterbar libtorrent before 0.14.4, as used in firetorrent, qBittorrent, deluge Torrent, and other applications, allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file. Scope: local
debian