GNU bug report logs - #30082
[PATCH] gnu: transmission: Fix a DNS rebinding vulnerability that allows RCE.

Previous Next

Package: guix-patches;

Reported by: Leo Famulari <leo <at> famulari.name>

Date: Thu, 11 Jan 2018 23:22:02 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

Full log

Message #16 received at 30082-done <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: Marius Bakke <mbakke <at> fastmail.com>
Cc: 30082-done <at> debbugs.gnu.org
Subject: Re: [bug#30082] [v2] gnu: transmission: Fix a DNS rebinding
 vulnerability that allows RCE.
Date: Fri, 12 Jan 2018 10:14:56 -0800

[Message part 1 (text/plain, inline)]

On Fri, Jan 12, 2018 at 12:54:31AM +0100, Marius Bakke wrote:
> Leo Famulari <leo <at> famulari.name> writes:
> 
> > * gnu/packages/patches/transmission-fix-dns-rebinding-vuln.patch: New file.
> > * gnu/local.mk (dist_patch_DATA): Add it.
> > * gnu/packages/bittorrent.scm (transmission)[source]: Use it.
> 
> Holy!  LGTM, and thanks a lot for this extremely quick fix.

Pushed as 6b433caed2c86bf41acfa65dd507292e8a0ab2ac

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 7 years and 127 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #30082 [PATCH] gnu: transmission: Fix a DNS rebinding vulnerability that allows RCE.

GNU bug report logs - #30082
[PATCH] gnu: transmission: Fix a DNS rebinding vulnerability that allows RCE.