关键信息 漏洞ID: CVE-2009-1759 漏洞类型: Stack-based buffer overflow vulnerability 受影响产品: CTorrent (Enhanced CTorrent) 受影响版本: 3.3.2 and probably older versions 报告时间: 2009-05-20 状态: CLOSED ERRATA 优先级和严重性: medium 修复版本: 3.3.3 漏洞描述 A boundary error flaw was found in Enhanced CTorrent that could be exploited to cause a stack-based buffer overflow if a user were to open a specially crafted torrent file. This could lead to an application crash or, possibly, the execution of arbitrary code. 影响 可能导致: Application crash and potentially execution of arbitrary code. 已修复的版本: 3.3.3 release (fixed in SVN). 更新信息 Fedora 11: ctorrent-1.3.4-10.dnh3.3.2.fc11 Fedora 10: ctorrent-1.3.4-7.dnh3.3.2.fc10 Fedora EPEL 5: ctorrent-1.3.4-4.dnh3.3.2.el5