Debian Security Update DSA-4650 qbittorrent - security update

Thread starter LinuxBot
Start date Apr 3, 2020

LinuxBot

Member

Apr 3, 2020

Miguel Onoro reported that qbittorrent, a bittorrent client with a Qt5 GUI user interface, allows command injection via shell metacharacters in the torrent name parameter or current tracker parameter, which could result in remote command execution via a crafted name within an RSS feed if qbittorrent is configured to run an external program on torrent completion.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 883 (members: 6, guests: 877)

Latest posts

SSL_read: I/O error: Get kicked out back to the the windows RDP client when trying to rdp to an Ubuntu 22.04 desktop
- Latest: osprey
- 19 minutes ago
Ubuntu forum
G'Day From the Centre of Australia.
- Latest: kc1di
- 47 minutes ago
Member Introductions
L
Journey to Create a Linux Distro
- Latest: Luxury
- Today at 8:47 AM
Getting Started
nftables wrapper? How do you manage nftables on servers?
- Latest: blunix
- Today at 8:44 AM
Linux Networking
Can't detect my nvme SSD on Linux mint edge boot usb
- Latest: wizardfromoz
- Today at 7:40 AM
Getting Started

Top