From ${URL} : A vulnerability was found in libtorrent. A specially crafted HTTP response from a tracker (or potentially a UPnP broadcast) can crash libtorrent in the parse_chunk_header() function. Upstream bug: https://github.com/arvidn/libtorrent/issues/780 Upstream fix: https://github.com/arvidn/libtorrent/pull/782 @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
1.0.9-r2 contains the backported patch. However it cannot be stabilized yet due to bug 547062.
Affected versions removed in a23ccc8f8406ca9a136093270db9523465f75bd4
GLSA Vote: No Maintainer(s), please drop the vulnerable version(s).
Thank you for cleanup. Thank you all for you work. Closing as [noglsa].