FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

libtorrent -- remote DoS

Affected packages
libtorrent < 0.13.6_5

Details

VuXML ID e4dd787e-0ea9-11e8-95f2-005056925db4
Discovery 2015-12-01
Entry 2018-02-10

X-cela reports:

Calls into build_benocde that use %zu could crash on 64 bit machines due to the size change of size_t. Someone can force READ_ENC_IA to fail allowing an internal_error to be thrown and bring down the client.

[source]

References

FreeBSD PR ports/224664
URL https://github.com/rakshasa/libtorrent/pull/99

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.