FEDORA-2018-b166805347

security update in Fedora 26 for transmission

Status: stable 9 months ago

Fix CVE patch, build with openssl-1.1.x


Security fix for CVE-2018-5702 (Mitigate dns rebinding attacks against daemon)

Comments 10

This update has been submitted for testing by limb.

This update has obsoleted transmission-2.92-11.fc26, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

no regressions noted

karma: +1

works for me - no regression noted.

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by limb.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1468077 Transmission-gtk: Update to support openssl 1.1 (rather than the compat package)
#1534061 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack
#1534062 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack [fedora-all]
#1536185 transmission-2.92-11.fc27 breaks rpc setups
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
low
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 11 months ago
in testing 11 months ago
in stable 9 months ago

Related Bugs 4

00 #1468077 Transmission-gtk: Update to support openssl 1.1 (rather than the compat package)
00 #1534061 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack
00 #1534062 CVE-2018-5702 transmission: Remote code execution (RCE) in rpc session-id via dns rebinding attack [fedora-all]
00 #1536185 transmission-2.92-11.fc27 breaks rpc setups

Automated Test Results