[SECURITY] [DLA 2218-1] transmission security update

[Thorsten Alteholz <debian@alteholz.de>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : transmission
Version        : 2.84-0.2+deb8u2
CVE ID         : CVE-2018-10756


Tom Richards reported that by using a crafted torrent file one could cause 
a use-after-free, which might result in a denial of service (crash) or 
possible execution of arbitrary code.


For Debian 8 "Jessie", this problem has been fixed in version
2.84-0.2+deb8u2.

We recommend that you upgrade your transmission packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=qZpU
-----END PGP SIGNATURE-----