FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libtorrent-rasterbar -- denial of service

Affected packages
libtorrent-rasterbar < 1.1.1

Details

VuXML ID 093584f2-3f14-11e6-b3c8-14dae9d210b8
Discovery 2016-06-03
Entry 2016-06-30

Brandon Perry reports:

The parse_chunk_header function in libtorrent before 1.1.1 allows remote attackers to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.

References

CVE Name CVE-2016-5301
URL https://github.com/arvidn/libtorrent/issues/780