Hi, regarding the vulnerability recently patched against DRDoS Vulnerability in the BitTorrent ecosystem, and as Debian package has already been updated, it is urgent now for security that Ubuntu also makes version 1.0.6 with the fix available for all distributions, as clients such Deluge and qBitTorrent depend from libtorrent-rasterbar.
Here are data on this bug: http://blog.bittorrent.com/2015/08/27/mitigating-drdos-vulnerability-in-the-bittorrent-ecosystem/ https://github.com/arvidn/libtorrent/commit/677e64275405a3a2fd9017c8b4c51f9cc5e0a2e1 http://www.researchgate.net/publication/280878634_P2P_File-Sharing_in_Hell_Exploiting_BitTorrent_Vulnerabilities_to_Launch_Distributed_Reflective_DoS_Attacks -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1485365 Title: Update libtorrent-rasterbar to latest 1.x release To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libtorrent-rasterbar/+bug/1485365/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
