CVE-2014-4909
Transmission <2.84 - RCE/DoS
Title source: llmDescription
Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write.
References (16)
Scores
EPSS
0.0919
EPSS Percentile
92.6%
Classification
CWE
CWE-189
Status
draft
Affected Products (50)
canonical/ubuntu_linux
canonical/ubuntu_linux
canonical/ubuntu_linux
fedoraproject/fedora
gentoo/linux
transmissionbt/transmission
< 2.83
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
transmissionbt/transmission
... and 35 more
Timeline
Published
Jul 29, 2014
Tracked Since
Feb 18, 2026