CVE-2010-0012
Directory traversal vulnerability in libtransmission/metainfo.c in Transmission 1.22, 1.34, 1.75, and 1.76 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a pathname within a .torrent file.
Date published : 2010-01-08
http://security.debian.org/pool/updates/main/t/transmission/transmission_1.22-1+lenny2.diff.gz