FEDORA-2018-b166805347

security update in Fedora 26 for transmission

Status: stable a year ago

Fix CVE patch, build with openssl-1.1.x


Security fix for CVE-2018-5702 (Mitigate dns rebinding attacks against daemon)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-b166805347

Comments 10

This update has been submitted for testing by limb.

This update has obsoleted transmission-2.92-11.fc26, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

no regressions noted

karma: +1

Works

karma: +1

works for me - no regression noted.

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by limb.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
low
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted a year ago
in testing a year ago
in stable a year ago

Related Bugs 4

00 #1468077 Transmission-gtk: Update to support openssl 1.1 (rather than the compat package)
00 #1534061 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack
00 #1534062 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack [fedora-all]
00 #1536185 transmission-2.92-11.fc27 breaks rpc setups

Automated Test Results