Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
51a0ee26 by Salvatore Bonaccorso at 2022-01-02T14:27:30+01:00
Update information for CVE-2021-22116/rabbitmq-server
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -63352,11 +63352,13 @@ CVE-2021-22117 (RabbitMQ installers on Windows prior
to version 3.8.16 do not ha
- rabbitmq-server <not-affected> (Windows-specific)
CVE-2021-22116 (RabbitMQ all versions prior to 3.8.16 are prone to a denial of
service ...)
{DLA-2710-1}
- - rabbitmq-server <unfixed> (bug #989056)
+ - rabbitmq-server 3.9.4-1 (bug #989056)
[bullseye] - rabbitmq-server <no-dsa> (Minor issue)
[buster] - rabbitmq-server <no-dsa> (Minor issue)
NOTE: https://tanzu.vmware.com/security/cve-2021-22116
NOTE: https://github.com/rabbitmq/rabbitmq-server/pull/2953
+ NOTE: Fixed by:
https://github.com/rabbitmq/rabbitmq-server/commit/f37a31de55229e6c763215500e376fa16803390b
(v3.9.0-beta.1)
+ NOTE: Fixed by:
https://github.com/rabbitmq/rabbitmq-server/commit/626d5219115d087a2695c0eb243c7ddb7e154563
(v3.8.15-rc.2)
CVE-2021-22115 (Cloud Controller API versions prior to 1.106.0 logs service
broker cre ...)
NOT-FOR-US: Cloud Controller API
CVE-2021-22114 (Addresses partial fix in CVE-2018-1263.
Spring-integration-zip, versio ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51a0ee2601ce94e1a28b01006781249722820656
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/51a0ee2601ce94e1a28b01006781249722820656
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
