FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  360546
Date:      2014-07-04
Time:      06:38:23Z
Committer: swills

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
73f53712-d028-11db-8c07-0211d85f11fbktorrent -- multiple vulnerabilities

Two problems have been found in KTorrent:

  • KTorrent does not properly sanitize file names to filter out ".." components, so it's possible for an attacker to create a malicious torrent in order to overwrite arbitrary files within the filesystem.
  • Messages with invalid chunk indexes aren't rejected.

Discovery 2007-03-09
Entry 2007-03-11
Modified 2007-03-14
ktorrent
lt 2.1.2

ktorrent-devel
lt 20070311

CVE-2007-1384
CVE-2007-1385
http://ktorrent.org/forum/viewtopic.php?t=1401
73f53712-d028-11db-8c07-0211d85f11fbktorrent -- multiple vulnerabilities

Two problems have been found in KTorrent:

  • KTorrent does not properly sanitize file names to filter out ".." components, so it's possible for an attacker to create a malicious torrent in order to overwrite arbitrary files within the filesystem.
  • Messages with invalid chunk indexes aren't rejected.

Discovery 2007-03-09
Entry 2007-03-11
Modified 2007-03-14
ktorrent
lt 2.1.2

ktorrent-devel
lt 20070311

CVE-2007-1384
CVE-2007-1385
http://ktorrent.org/forum/viewtopic.php?t=1401