** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-5702
-- You received this bug notification because you are a member of Desktop Packages, which is subscribed to transmission in Ubuntu. https://bugs.launchpad.net/bugs/1743473 Title: CVE-2018-5702: Mitigate dns rebinding attacks against daemon Status in transmission package in Ubuntu: New Bug description: Tavis Ormandy from Google's Project Zero reported a bug on the transmission security list on November 30th 2017 This is discussed here: https://github.com/transmission/transmission/pull/468 Fix for this issue was pushed to transmission/master, please apply the fix for Ubuntu. Impact class: remote code execution. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/transmission/+bug/1743473/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp