Census

Name of the Vulnerable Software and Affected Versions: libtorrent versions prior to 0.14.4 Description: A directory traversal issue exists, allowing remote attackers to create or overwrite arbitrary files via a .. (dot dot) and partial relative pathname in a Multiple File Mode list element in a .torrent file. Recommendations: For versions prior to 0.14.4, update to version 0.14.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of .torrent files from untrusted sources until the update is applied.