Search CVE reports


Toggle filters

1 – 10 of 10 results


CVE-2018-10756

Low priority

Some fixes available 4 of 13

Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted torrent file.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission Fixed Fixed Vulnerable Vulnerable Needs evaluation
Show less packages

CVE-2010-0749

Low priority
Ignored

Transmission before 1.92 allows attackers to prevent download of a file by corrupted data during the endgame.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2010-0748

Medium priority
Ignored

Transmission before 1.92 allows an attacker to cause a denial of service (crash) or possibly have other unspecified impact via a large number of tr arguments in a magnet link.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2018-5702

Medium priority
Fixed

Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary...

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission Fixed
Show less packages

CVE-2014-4909

Medium priority

Some fixes available 3 of 4

Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which...

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2012-6129

Medium priority

Some fixes available 3 of 4

Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro...

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2012-4037

Medium priority

Some fixes available 1 of 2

Multiple cross-site scripting (XSS) vulnerabilities in the web client in Transmission before 2.61 allow remote attackers to inject arbitrary web script or HTML via the (1) comment, (2) created by, or (3) name field in a torrent file.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2010-1853

Low priority
Ignored

Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted...

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2010-0012

Medium priority
Fixed

Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages

CVE-2009-1757

Low priority

Some fixes available 1 of 2

Cross-site request forgery (CSRF) vulnerability in Transmission 1.5 before 1.53 and 1.6 before 1.61 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

1 affected packages

transmission

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
transmission
Show less packages