FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
73f53712-d028-11db-8c07-0211d85f11fb	ktorrent -- multiple vulnerabilities Two problems have been found in KTorrent: KTorrent does not properly sanitize file names to filter out ".." components, so it's possible for an attacker to create a malicious torrent in order to overwrite arbitrary files within the filesystem. Messages with invalid chunk indexes aren't rejected. Discovery 2007-03-09 Entry 2007-03-11 Modified 2007-03-14 ktorrent < 2.1.2 ktorrent-devel < 20070311 CVE-2007-1384 CVE-2007-1385 http://ktorrent.org/forum/viewtopic.php?t=1401

VuXML ID

Description

73f53712-d028-11db-8c07-0211d85f11fb

ktorrent -- multiple vulnerabilities

Two problems have been found in KTorrent:

KTorrent does not properly sanitize file names to filter out ".." components, so it's possible for an attacker to create a malicious torrent in order to overwrite arbitrary files within the filesystem.
Messages with invalid chunk indexes aren't rejected.

Discovery 2007-03-09
Entry 2007-03-11
Modified 2007-03-14
ktorrent

< 2.1.2

ktorrent-devel

< 20070311

CVE-2007-1384
CVE-2007-1385
http://ktorrent.org/forum/viewtopic.php?t=1401