Hi, regarding the vulnerability recently patched against DRDoS
Vulnerability in the BitTorrent ecosystem, and as Debian package has
already been updated, it is urgent now for security that Ubuntu also
makes version 1.0.6 with the fix available for all distributions, as
clients such Deluge and qBitTorrent depend from libtorrent-rasterbar.

Here are data on this bug:
http://blog.bittorrent.com/2015/08/27/mitigating-drdos-vulnerability-in-the-bittorrent-ecosystem/
https://github.com/arvidn/libtorrent/commit/677e64275405a3a2fd9017c8b4c51f9cc5e0a2e1
http://www.researchgate.net/publication/280878634_P2P_File-Sharing_in_Hell_Exploiting_BitTorrent_Vulnerabilities_to_Launch_Distributed_Reflective_DoS_Attacks

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1485365

Title:
  Update libtorrent-rasterbar to latest 1.x release

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libtorrent-rasterbar/+bug/1485365/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to