Update libtorrent-rasterbar to 1.0.6 - Fix DRDoS critical bug
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
libtorrent-rasterbar (Ubuntu) |
Fix Released
|
Undecided
|
Andrew Starr-Bochicchio | ||
Precise |
Won't Fix
|
Undecided
|
Unassigned | ||
Trusty |
Incomplete
|
Undecided
|
Unassigned | ||
Vivid |
Incomplete
|
Undecided
|
Unassigned |
Bug Description
Hi,
Sorry to create deliberately a duplicate, but even if original bug was assigned I'm not sure who receive all the updates and I can't modify the existing one to declare it as security concerned, now:
https:/
A critical vulnerability has just been patched against DRDoS in the BitTorrent ecosystem, regarding libtorrent-
As Debian package has already been updated in experimental: https:/
I guess it should be easy now for Ubuntu to make version 1.0.6 with the fix available for all distributions, as clients such Deluge and qBitTorrent depend from libtorrent-
Transmission seems not concerned: https:/
And Vuze is working on it, package will have to be updated short after their next release: http://
Here are data on this bug:
http://
https:/
http://
Moreover, libtorrent-
https:/
Thanks and best regards,
Xavier Guillot
information type: | Private Security → Public Security |
description: | updated |
Changed in libtorrent-rasterbar (Ubuntu): | |
status: | Confirmed → In Progress |
assignee: | nobody → Andrew Starr-Bochicchio (andrewsomething) |
Status changed to 'Confirmed' because the bug affects multiple users.