Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

Fedora 23: qpid-cpp Security Advisory for AMQP Enhancements

fedora
Calendar Grey March 9, 2016
Dist Fedora Esm H88
The Fedora 23 release introduces an update for qpid-cpp that tackles security vulnerabilities while providing enhancements to the AMQP protocols utilized in client applications.
Rebuilt against qpid-proton 0.12.0.

Summary

Run-time libraries for AMQP client applications developed using Qpid

C++. Clients exchange messages with an AMQP message broker using

the AMQP protocol.

Update Information:

Rebuilt against qpid-proton 0.12.0.

Change Log

References


[ 1 ] Bug #1186311 - CVE-2015-0223 qpid-cpp: anonymous access to qpidd cannot be prevented [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1186311 [ 2 ] Bug #1186305 - CVE-2015-0224 qpid-cpp: qpidd can be crashed by unauthenticated user (incomplete fix for CVE-2015-0203) [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1186305

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update qpid-cpp' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
important
Lowest
Low
Medium
High
Critical

Name: qpid-cpp
Product: Fedora 23
Version: 0.34
Release: 6.fc23
Summary: Libraries for Qpid C++ client applications

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.