Fedora 22: zeromq Security Update
Summary
The 0MQ lightweight messaging kernel is a library which extends the
standard socket interfaces with features traditionally provided by
specialized messaging middle-ware products. 0MQ sockets provide an
abstraction of asynchronous message queues, multiple messaging
patterns, message filtering (subscriptions), seamless access to
multiple transport protocols and more.
This package contains the ZeroMQ shared library.
Update Information:
Cherry-pick a fix for the protocol downgrade attack (CVE-2014-9721)
Change Log
* Tue May 19 2015 Thomas Spura
References
[ 1 ] Bug #1221666 - CVE-2014-9721 zeromq: protocol downgrade attack on sockets using the ZMTP v3 protocol https://bugzilla.redhat.com/show_bug.cgi?id=1221666
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update zeromq' at the command line. For more information, refer to "Managing Software with yum", available at .