[ubuntu/jammy-security] rabbitmq-server 3.9.13-1ubuntu0.22.04.2 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Tue Nov 21 16:45:35 UTC 2023


rabbitmq-server (3.9.13-1ubuntu0.22.04.2) jammy-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2023-46118-*.patch: Introduce HTTP request body limit
      for definition uploads and Reduce default HTTP API request body size limit
      to 10 MiB in deps/rabbitmq_management/Makefile, include/rabbit_mgmt.hrl,
      priv/schema/rabbitmq_management.schema, src/rabbit_mgmt_util.erl,
      src/rabbit_mgmt_wm_definitions.erl.
    - CVE-2023-46118

Date: 2023-11-20 14:42:12.813191+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/rabbitmq-server/3.9.13-1ubuntu0.22.04.2
-------------- next part --------------
Sorry, changesfile not available.


More information about the jammy-changes mailing list