VIR Vulnerability Intelligence Relay

CVE-2014-4909

medium
Published 2014-07-29 · Modified 2026-05-06
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2014-4909

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://trac.transmissionbt.com/wiki/Changes#version-2.84

OS impact
OSVersionStatusFixed in
fedora fedora20affected
ubuntu ubuntu12.04affected
ubuntu ubuntu13.10affected
ubuntu ubuntu14.04affected
gentoo gentooaffected
debian debianbookwormfixed2.84-0.1
debian debianbullseyefixed2.84-0.1
debian debianforkyfixed2.84-0.1
debian debiansidfixed2.84-0.1
debian debiantrixiefixed2.84-0.1

Application impact
VendorProductVersionsFixed
transmissionbttransmission{"endIncluding":"2.83"}
transmissionbttransmission0.1
transmissionbttransmission0.2
transmissionbttransmission0.3
transmissionbttransmission0.4
transmissionbttransmission0.5
transmissionbttransmission0.6
transmissionbttransmission0.6.1
transmissionbttransmission0.70
transmissionbttransmission0.71
transmissionbttransmission0.72
transmissionbttransmission0.80
transmissionbttransmission0.81
transmissionbttransmission0.82
transmissionbttransmission0.90
transmissionbttransmission0.91
transmissionbttransmission0.92
transmissionbttransmission0.93
transmissionbttransmission0.94
transmissionbttransmission0.95
transmissionbttransmission0.96
transmissionbttransmission1.00
transmissionbttransmission1.01
transmissionbttransmission1.02
transmissionbttransmission1.2
transmissionbttransmission1.03
transmissionbttransmission1.04
transmissionbttransmission1.05
transmissionbttransmission1.06
transmissionbttransmission1.10
transmissionbttransmission1.11
transmissionbttransmission1.20
transmissionbttransmission1.21
transmissionbttransmission1.22
transmissionbttransmission1.30
transmissionbttransmission1.31
transmissionbttransmission1.32
transmissionbttransmission1.33
transmissionbttransmission1.34
transmissionbttransmission1.40
transmissionbttransmission1.41
transmissionbttransmission1.42
transmissionbttransmission1.50
transmissionbttransmission1.51
transmissionbttransmission1.52
transmissionbttransmission1.53
transmissionbttransmission1.54
transmissionbttransmission1.60
transmissionbttransmission1.61
transmissionbttransmission1.70
transmissionbttransmission1.71
transmissionbttransmission1.72
transmissionbttransmission1.73
transmissionbttransmission1.74
transmissionbttransmission1.75
transmissionbttransmission1.76
transmissionbttransmission1.77
transmissionbttransmission1.80
transmissionbttransmission1.81
transmissionbttransmission1.82
transmissionbttransmission1.83
transmissionbttransmission1.90
transmissionbttransmission1.91
transmissionbttransmission1.92
transmissionbttransmission1.93
transmissionbttransmission2.00
transmissionbttransmission2.01
transmissionbttransmission2.02
transmissionbttransmission2.03
transmissionbttransmission2.04
transmissionbttransmission2.10
transmissionbttransmission2.11
transmissionbttransmission2.12
transmissionbttransmission2.13
transmissionbttransmission2.20
transmissionbttransmission2.21
transmissionbttransmission2.22
transmissionbttransmission2.30
transmissionbttransmission2.31
transmissionbttransmission2.32
transmissionbttransmission2.33
transmissionbttransmission2.40
transmissionbttransmission2.41
transmissionbttransmission2.42
transmissionbttransmission2.50
transmissionbttransmission2.51
transmissionbttransmission2.52
transmissionbttransmission2.60
transmissionbttransmission2.61
transmissionbttransmission2.70
transmissionbttransmission2.71
transmissionbttransmission2.72
transmissionbttransmission2.73
transmissionbttransmission2.74
transmissionbttransmission2.75
transmissionbttransmission2.76
transmissionbttransmission2.77
transmissionbttransmission2.80
transmissionbttransmission2.81
transmissionbttransmission2.82

References

CWEs

CWE-189

Verify integrity in audit chain (admin only). AS-IS.