Your submission was sent successfully! Close

CVE-2012-6129

Published: 31 December 2012

Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro transport protocol packets."

Notes

AuthorNote
seth-arnold
transmission team may update patch based on how libutp upstream
patches the issue
Priority

Medium

Status

Package Release Status
transmission
Launchpad, Ubuntu, Debian
hardy Ignored
(reached end-of-life)
lucid Not vulnerable
(code not present)
oneiric
Released (2.33-0ubuntu2.1)
precise
Released (2.51-0ubuntu1.3)
quantal
Released (2.61-0ubuntu2.2)
upstream
Released (2.74)
Patches:
upstream: https://trac.transmissionbt.com/changeset/13646