[ubuntu/bionic-security] rabbitmq-server 3.6.10-1ubuntu0.5 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Thu Jun 24 15:00:02 UTC 2021


rabbitmq-server (3.6.10-1ubuntu0.5) bionic-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2021-22116.patch: treat arrays with extra or
      missing input as fatal errors in deps/rabbitmq_amqp1_0/src/rabbit_amqp1_0_binary_parser.erl.
    - CVE-2021-22116
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2019-11287.patch: Format `Explanation` before passing it
      deps/rabbit_common/src/rabbit_reader.erl.
    - CVE-2019-11287

Date: 2021-06-23 14:58:09.881404+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/rabbitmq-server/3.6.10-1ubuntu0.5
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list