Fedora Core 10 FEDORA-2009-6547 (rb_libtorrent)

Summary
The remote host is missing an update to rb_libtorrent announced via advisory FEDORA-2009-6547.
Solution
Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update rb_libtorrent' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-6547
Insight
Its main goals are to be very efficient (in terms of CPU and memory usage) as well as being very easy to use both as a user and developer. Update Information: This release adds an upstream patch to fix a directory traversal vulnerability which would allow a remote attacker to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a specially-crafted torrent. ChangeLog: * Sun Jun 14 2009 Peter Gordon - 0.13.1-5 - Apply upstream patch to fix CVE-2009-1760 (arbitrary file overwrite vulnerability): + 0.13-CVE-2009-1760.diff - Fixes security bug #505523.
References