UbuntuUpdates.org

Package "amqp-tools"

Name: amqp-tools

Description:

Command-line utilities for interacting with AMQP servers

Latest version: 0.7.1-1ubuntu0.2
Release: xenial (16.04)
Level: updates
Repository: universe
Head package: librabbitmq
Homepage: https://github.com/alanxz/rabbitmq-c

Links


Download "amqp-tools"


Other versions of "amqp-tools" in Xenial

Repository Area Version
base universe 0.7.1-1
security universe 0.7.1-1ubuntu0.2

Changelog

Version: 0.7.1-1ubuntu0.2 2019-12-11 18:07:37 UTC

  librabbitmq (0.7.1-1ubuntu0.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-18609.patch: check frame_size is >= INT32_MAX
      in librabbitmq/amqp_connection.c.
    - CVE-2019-18609

 -- Eduardo Barretto <email address hidden> Tue, 10 Dec 2019 11:10:37 -0300

Source diff to previous version
CVE-2019-18609 An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corrupt

Version: 0.7.1-1ubuntu0.1 2019-07-31 18:07:14 UTC

  librabbitmq (0.7.1-1ubuntu0.1) xenial; urgency=medium

  * d/patches: Add fix-parameter-processing.patch to correct handling of
    --server, --url, and other options by reorganizing the logic flow.
    (LP: #1790657)

 -- Bryce Harrington <email address hidden> Mon, 08 Jul 2019 20:19:04 -0700

1790657 [SRU] amqp-tools server parameter unusable



About   -   Send Feedback to @ubuntu_updates