Hello community, here is the log from the commit of package mosquitto for openSUSE:Factory checked in at 2020-08-24 15:10:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mosquitto (Old) and /work/SRC/openSUSE:Factory/.mosquitto.new.3399 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mosquitto" Mon Aug 24 15:10:40 2020 rev:19 rq:828659 version:1.6.12 Changes: -------- --- /work/SRC/openSUSE:Factory/mosquitto/mosquitto.changes 2020-08-12 10:39:56.716393918 +0200 +++ /work/SRC/openSUSE:Factory/.mosquitto.new.3399/mosquitto.changes 2020-08-24 15:12:39.166673275 +0200 @@ -1,0 +2,22 @@ +Wed Aug 19 19:29:23 UTC 2020 - Martin Hauke <[email protected]> + +- Update to version 1.6.12 + Security: + * In some circumstances, Mosquitto could leak memory when + handling PUBLISH messages. This is limited to incoming QoS 2 + messages, and is related to the combination of the broker + having persistence enabled, a clean session=false client, + which was connected prior to the broker restarting, then has + reconnected and has now sent messages at a sufficiently high + rate that the incoming queue at the broker has filled up and + hence messages are being dropped. This is more likely to have + an effect where max_queued_messages is a small value. + This has now been fixed. Closes #1793. + Broker: + * Build warning fixes when building with WITH_BRIDGE=no and + WITH_TLS=no. + Clients: + * All clients exit with an error exit code on CONNACK failure. + * Don't busy loop with `mosquitto_pub -l` on a slow connection. + +------------------------------------------------------------------- Old: ---- mosquitto-1.6.11.tar.gz mosquitto-1.6.11.tar.gz.sig New: ---- mosquitto-1.6.12.tar.gz mosquitto-1.6.12.tar.gz.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mosquitto.spec ++++++ --- /var/tmp/diff_new_pack.386Y5o/_old 2020-08-24 15:12:41.062674199 +0200 +++ /var/tmp/diff_new_pack.386Y5o/_new 2020-08-24 15:12:41.062674199 +0200 @@ -20,7 +20,7 @@ %define c_lib libmosquitto1 %define cpp_lib libmosquittopp1 Name: mosquitto -Version: 1.6.11 +Version: 1.6.12 Release: 0 Summary: A MQTT v3.1/v3.1.1 Broker License: EPL-1.0 ++++++ mosquitto-1.6.11.tar.gz -> mosquitto-1.6.12.tar.gz ++++++ ++++ 2326 lines of diff (skipped)
