Stay Vigilant with Timely Linux Security Advisories

Loading...

security advisorybuffer overflowred hat

Red Hat AMQ Clients 2.7.0 RHSA-2020:2605-01 Low Severity: Buffer Overflow

An update is now available for Red Hat AMQ Clients 2.7.0. Red Hat Product Security has rated this update as having a Low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: AMQ Clients 2.7.0 Release Advisory ID: RHSA-2020:2605-01 Product: Red Hat AMQ Clients Advisory URL: https://access.redhat.com/errata/RHSA-2020:2605 Issue date: 2020-06-17 CVE Names: CVE-2020-11612 ==================================================================== 1. Summary: An update is now available for Red Hat AMQ Clients 2.7.0. Red Hat Product Security has rated this update as having a Low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: 6Client-AMQ-Clients-2 - i386, noarch, x86_64 6ComputeNode-AMQ-Clients-2 - noarch, x86_64 6Server-AMQ-Clients-2 - i386, noarch, x86_64 6Workstation-AMQ-Clients-2 - i386, noarch, x86_64 7Client-AMQ-Clients-2 - noarch, x86_64 7ComputeNode-AMQ-Clients-2 - noarch, x86_64 7Server-AMQ-Clients-2 - noarch, x86_64 7Workstation-AMQ-Clients-2 - noarch, x86_64 8Base-AMQ-Clients-2 - noarch, x86_64 3. Description: Red Hat AMQ Clients enable connecting, sending, and receiving messages over the AMQP 1.0 wire transport protocol to or from AMQ Broker 6 and 7. This update provides various bug fixes and enhancements in addition to the client package versions previously released on Red Hat Enterprise Linux 6, 7, and 8. Security Fix(es): * netty: compression/decompression codecs don't enforce limits on buffer allocation sizes (CVE-2020-11612) For more details about the security issue(s), including the impact, aCVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1816216 - CVE-2020-11612 netty: compression/decompression codecs don't enforce limits on buffer allocation sizes 6. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): ENTMQCL-1107 - [examples] Multi-process examples does not work on Windows ENTMQCL-1150 - AMQP Python clients missing for Windows users or other usersENTMQCL-1297 - [dotnet] .Net Framework 4.7 for AMQ Client 2.7.0 ENTMQCL-1736 - [python] Example helloworld_direct_tornado.py does not work ENTMQCL-1737 - [python] Example helloworld_tornado.py does not work ENTMQCL-1738 - [python] Example client_http.py does not work ENTMQCL-1739 - [dotnet] Support AMQ .NET Client with .NET Core 3.1 ENTMQCL-1854 - [python] ApplicationEvent causing memory growth ENTMQCL-1861 - [python] Memory leak on Container, SSL, and SSLDomain objects ENTMQCL-1922 - [ruby] rubygem doc is not multilib-clean for x86_64 vs i686 ENTMQCL-1985 - [dotnet] TcpKeepAliveSettings do not work on Linux ENTMQCL-761 - [python] Unable to run Proton on Windows with Python 3.6 64bit ENTMQCL-797 - [python] Support Python 3 on Windows 7. PackageList: 6Client-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el6_10amq.src.rpm qpid-proton-0.31.0-3.el6_10.src.rpm i386: python-qpid-proton-0.31.0-3.el6_10.i686.rpm qpid-proton-c-0.31.0-3.el6_10.i686.rpm qpid-proton-c-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.31.0-3.el6_10.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el6_10amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-tests-0.31.0-3.el6_10.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el6_10.x86_64.rpm qpid-cpp-client-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el6_10amq.x86_64.rpm qpid-proton-c-0.31.0-3.el6_10.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.x86_64.rpm 6ComputeNode-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el6_10amq.src.rpm qpid-proton-0.31.0-3.el6_10.src.rpm noarch: python-qpid-proton-docs-0.31.0-3.el6_10.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el6_10amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-tests-0.31.0-3.el6_10.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el6_10.x86_64.rpm qpid-cpp-client-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el6_10amq.x86_64.rpm qpid-proton-c-0.31.0-3.el6_10.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.x86_64.rpm 6Server-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el6_10amq.src.rpm qpid-proton-0.31.0-3.el6_10.src.rpm i386: python-qpid-proton-0.31.0-3.el6_10.i686.rpm qpid-proton-c-0.31.0-3.el6_10.i686.rpm qpid-proton-c-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.31.0-3.el6_10.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el6_10amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-tests-0.31.0-3.el6_10.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el6_10.x86_64.rpm qpid-cpp-client-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el6_10amq.x86_64.rpm qpid-proton-c-0.31.0-3.el6_10.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.x86_64.rpm 6Workstation-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el6_10amq.src.rpm qpid-proton-0.31.0-3.el6_10.src.rpm i386: python-qpid-proton-0.31.0-3.el6_10.i686.rpm qpid-proton-c-0.31.0-3.el6_10.i686.rpm qpid-proton-c-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-0.31.0-3.el6_10.i686.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.i686.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.31.0-3.el6_10.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el6_10amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el6_10.noarch.rpm qpid-proton-tests-0.31.0-3.el6_10.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el6_10.x86_64.rpm qpid-cpp-client-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el6_10amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el6_10amq.x86_64.rpm qpid-proton-c-0.31.0-3.el6_10.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-0.31.0-3.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el6_10.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el6_10.x86_64.rpm 7Client-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el7amq.src.rpm qpid-proton-0.31.0-3.el7.src.rpm rubygem-qpid_proton-0.31.0-2.el7.src.rpm noarch: python-qpid-proton-docs-0.31.0-3.el7.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el7amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el7.noarch.rpm qpid-proton-tests-0.31.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el7.x86_64.rpm qpid-cpp-client-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el7amq.x86_64.rpm qpid-proton-c-0.31.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el7.x86_64.rpm rubygem-qpid_proton-0.31.0-2.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.31.0-2.el7.x86_64.rpm 7ComputeNode-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el7amq.src.rpm qpid-proton-0.31.0-3.el7.src.rpm rubygem-qpid_proton-0.31.0-2.el7.src.rpm noarch: python-qpid-proton-docs-0.31.0-3.el7.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el7amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el7.noarch.rpm qpid-proton-tests-0.31.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el7.x86_64.rpm qpid-cpp-client-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el7amq.x86_64.rpm qpid-proton-c-0.31.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el7.x86_64.rpm rubygem-qpid_proton-0.31.0-2.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.31.0-2.el7.x86_64.rpm 7Server-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el7amq.src.rpm qpid-proton-0.31.0-3.el7.src.rpm rubygem-qpid_proton-0.31.0-2.el7.src.rpm noarch: python-qpid-proton-docs-0.31.0-3.el7.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el7amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el7.noarch.rpm qpid-proton-tests-0.31.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el7.x86_64.rpm qpid-cpp-client-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el7amq.x86_64.rpm qpid-proton-c-0.31.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el7.x86_64.rpm rubygem-qpid_proton-0.31.0-2.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.31.0-2.el7.x86_64.rpm 7Workstation-AMQ-Clients-2: Source: qpid-cpp-1.36.0-30.el7amq.src.rpm qpid-proton-0.31.0-3.el7.src.rpm rubygem-qpid_proton-0.31.0-2.el7.src.rpm noarch: python-qpid-proton-docs-0.31.0-3.el7.noarch.rpm qpid-cpp-client-docs-1.36.0-30.el7amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el7.noarch.rpm qpid-proton-tests-0.31.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.31.0-3.el7.x86_64.rpm qpid-cpp-client-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-client-devel-1.36.0-30.el7amq.x86_64.rpm qpid-cpp-debuginfo-1.36.0-30.el7amq.x86_64.rpm qpid-proton-c-0.31.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-0.31.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el7.x86_64.rpm rubygem-qpid_proton-0.31.0-2.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.31.0-2.el7.x86_64.rpm 8Base-AMQ-Clients-2: Source: nodejs-rhea-1.0.21-1.el8.src.rpm qpid-cpp-1.39.0-5.el8amq.src.rpm qpid-proton-0.31.0-3.el8.src.rpm rubygem-qpid_proton-0.31.0-2.el8.src.rpm noarch: nodejs-rhea-1.0.21-1.el8.noarch.rpm python-qpid-proton-docs-0.31.0-3.el8.noarch.rpm qpid-cpp-client-docs-1.39.0-5.el8amq.noarch.rpm qpid-proton-c-docs-0.31.0-3.el8.noarch.rpm qpid-proton-cpp-docs-0.31.0-3.el8.noarch.rpm qpid-proton-tests-0.31.0-3.el8.noarch.rpm x86_64: python3-qpid-proton-0.31.0-3.el8.x86_64.rpm python3-qpid-proton-debuginfo-0.31.0-3.el8.x86_64.rpm qpid-cpp-client-1.39.0-5.el8amq.x86_64.rpm qpid-cpp-client-debuginfo-1.39.0-5.el8amq.x86_64.rpm qpid-cpp-client-devel-1.39.0-5.el8amq.x86_64.rpm qpid-cpp-client-devel-debuginfo-1.39.0-5.el8amq.x86_64.rpm qpid-cpp-debuginfo-1.39.0-5.el8amq.x86_64.rpm qpid-cpp-debugsource-1.39.0-5.el8amq.x86_64.rpm qpid-proton-c-0.31.0-3.el8.x86_64.rpm qpid-proton-c-debuginfo-0.31.0-3.el8.x86_64.rpm qpid-proton-c-devel-0.31.0-3.el8.x86_64.rpm qpid-proton-cpp-0.31.0-3.el8.x86_64.rpm qpid-proton-cpp-debuginfo-0.31.0-3.el8.x86_64.rpm qpid-proton-cpp-devel-0.31.0-3.el8.x86_64.rpm qpid-proton-debuginfo-0.31.0-3.el8.x86_64.rpm qpid-proton-debugsource-0.31.0-3.el8.x86_64.rpm rubygem-qpid_proton-0.31.0-2.el8.x86_64.rpm rubygem-qpid_proton-debuginfo-0.31.0-2.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 8. References: https://access.redhat.com/security/cve/CVE-2020-11612 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/documentation/en-us/red_hat_amq/ https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.amq.clients&version=2.7.0 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXupz+tzjgjWX9erEAQitQw/9HnhdaO3nFHTduoUE4v7i+9xCt3WXlKoK PpJjYcHzBnmkUx70QFxhHmSaaWfgydZwdiXkFQ0hjLbSg+PdD9np3/J/1FFYNKwh 8IRkFG/OOoZBz3lbqHowChC6QH1mYJoBCiEEumF0i+K5F/OCkBdF3fK8HLB0Hiqd eo/SuzxpMwnXjjxDknCNockzdZadyg0Y3kqXQxYHmjAXITa5ezcR/pQTC+OkBzf9 HfCFz9dcYOslLxbw+fRdkOHzSGYTbqpCummwaGxuQ+ksdZJaQM8PqKZAShIriafb Io3DpnNKuRpCk51C4NauHVF943rSQrYnTgNU9r7jNkkHOzfxY/zwjjfM3HxD/T4G 3HNPM/6uegzlJHo5kP9uIewes2dsWlcxT1oH7Xlp7ISooQYBSC6pbH39aHoWTMw+ F/PgZcE5tBvnaZgSLr/wAybQ+Ec03s5i/uUp4WRZvRcAZteEPu6WHp6ouhVtrC8u VZIPiCrWvvGU6YgMJCvVOjaoh/mOeLUJqRIGq4oO02SLcjGEdayIvGX3s/Yl8913 9PwYqRA16RlF2qj1HTxJw5t7pO6NPkafBeacSWElxQVxBYM7cBiPUARLt2kFot23 z0fr/mlMK7C7onRJn+d/ZnWpusJ0giwxpQQx9pUwEusEImXb4LnTIDEVgP9Mjd9m u7vNjqw8qGA=awfu -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The update for Red Hat AMQ Clients 2.7.0 resolves minor security vulnerabilities. Discover the improvements and patches implemented.. Red Hat Update, AMQ Clients, Security Advisory, Message Broker, Buffer Overflow. . Severity: Low. LinuxSecurity.com Team

Jun 17, 2020 •Low Red Hat

security advisoryred hatbug fix

RedHat: RHSA-2020-0601-01 Important: HTTP Request Fix in AMQ Clients 2.6.0

An update is now available for Red Hat AMQ Clients 2.6.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: AMQ Clients 2.6.0 Release Advisory ID: RHSA-2020:0601-01 Product: Red Hat AMQ Clients Advisory URL: https://access.redhat.com/errata/RHSA-2020:0601 Issue date: 2020-02-25 CVE Names: CVE-2019-20444 CVE-2019-20445 CVE-2020-7238 ==================================================================== 1. Summary: An update is now available for Red Hat AMQ Clients 2.6.0. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: 6Client-AMQ-Clients-2 - i386, noarch, x86_64 6ComputeNode-AMQ-Clients-2 - noarch, x86_64 6Server-AMQ-Clients-2 - i386, noarch, x86_64 6Workstation-AMQ-Clients-2 - i386, noarch, x86_64 7Client-AMQ-Clients-2 - noarch, x86_64 7ComputeNode-AMQ-Clients-2 - noarch, x86_64 7Server-AMQ-Clients-2 - noarch, x86_64 7Workstation-AMQ-Clients-2 - noarch, x86_64 8Base-AMQ-Clients-2 - noarch, x86_64 3. Description: Red Hat AMQ Clients enable connecting, sending, and receiving messages over the AMQP 1.0 wire transport protocol to or from AMQ Broker 6 and 7. This update provides various bug fixes and enhancements in addition to the client package versions previously released on Red Hat Enterprise Linux 6, 7, and 8. Security Fix(es): * netty: HTTP request smuggling (CVE-2019-20444) * netty: HttpObjectDecoder.java allows Content-Length header toaccompanied by second Content-Length header (CVE-2019-20445) * netty: HTTP Request Smuggling due to Transfer-Encoding whitespace mishandling (CVE-2020-7238) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1796225 - CVE-2020-7238 netty: HTTP Request Smuggling due to Transfer-Encoding whitespace mishandling 1798509 - CVE-2019-20445 netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header 1798524 - CVE-2019-20444 netty: HTTP request smuggling 6. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): ENTMQCL-1075 - [python] Example broker.py is using collections.deque.count from Python 2.7 ENTMQCL-1076 - [python] Example abstract_server.py is using relative import ENTMQCL-1246 - [python] Install egg-info directory ENTMQCL-1287 - [python] Read a config file to get default connection parameters (Windows) ENTMQCL-1322 - amqpnetlite-sdk-2.1.6 does not export resource strings ENTMQCL-1361 - [python] Convert strings in the API to AMQP symbols where required ENTMQCL-1364 - [python] P2P detach frame not received results in connection aborted ENTMQCL-1578 - [python] qpid-proton-0.28.0-1.el7 leaks memory ENTMQCL-1583 - [doc] Broken links in rh-messaging/amq-docs master ENTMQCL-1635 - [javascript] File-based connection configuration can't use named ports ENTMQCL-1641 - [dotnet] Update AMQ .NET Client based on amqpnetlite 2.2 ENTMQCL-1679 - [python] HOME location of file-based connection configuration does not point to HOME location ENTMQCL-1717 - [python] Default port should be amqps ENTMQCL-1726 - [jms] Improve performance when using simulated anonymousproducersENTMQCL-1781 - Established connections are aborted after the system clock is shifted forward ENTMQCL-1818 - [javascript] npm install fails due to missing configuration file for ESLint ENTMQCL-1835 - [jms] client-ack consumers don't increment remote delivery count on closure after fresh recover 7. PackageList: 6Client-AMQ-Clients-2: Source: qpid-proton-0.30.0-4.el6_10.src.rpm i386: python-qpid-proton-0.30.0-4.el6_10.i686.rpm qpid-proton-c-0.30.0-4.el6_10.i686.rpm qpid-proton-c-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-c-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-cpp-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-tests-0.30.0-4.el6_10.noarch.rpm x86_64: python-qpid-proton-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.x86_64.rpm 6ComputeNode-AMQ-Clients-2: Source: qpid-proton-0.30.0-4.el6_10.src.rpm noarch: python-qpid-proton-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-c-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-cpp-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-tests-0.30.0-4.el6_10.noarch.rpm x86_64: python-qpid-proton-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.x86_64.rpm 6Server-AMQ-Clients-2: Source: qpid-proton-0.30.0-4.el6_10.src.rpm i386: python-qpid-proton-0.30.0-4.el6_10.i686.rpm qpid-proton-c-0.30.0-4.el6_10.i686.rpm qpid-proton-c-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-c-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-cpp-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-tests-0.30.0-4.el6_10.noarch.rpm x86_64: python-qpid-proton-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.x86_64.rpm 6Workstation-AMQ-Clients-2: Source: qpid-proton-0.30.0-4.el6_10.src.rpm i386: python-qpid-proton-0.30.0-4.el6_10.i686.rpm qpid-proton-c-0.30.0-4.el6_10.i686.rpm qpid-proton-c-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-0.30.0-4.el6_10.i686.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.i686.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.i686.rpm noarch: python-qpid-proton-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-c-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-cpp-docs-0.30.0-4.el6_10.noarch.rpm qpid-proton-tests-0.30.0-4.el6_10.noarch.rpm x86_64: python-qpid-proton-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-0.30.0-4.el6_10.x86_64.rpm qpid-proton-c-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-0.30.0-4.el6_10.x86_64.rpm qpid-proton-cpp-devel-0.30.0-4.el6_10.x86_64.rpm qpid-proton-debuginfo-0.30.0-4.el6_10.x86_64.rpm 7Client-AMQ-Clients-2: Source: qpid-proton-0.30.0-2.el7.src.rpm rubygem-qpid_proton-0.30.0-1.el7.src.rpm noarch: python-qpid-proton-docs-0.30.0-2.el7.noarch.rpm qpid-proton-c-docs-0.30.0-2.el7.noarch.rpm qpid-proton-cpp-docs-0.30.0-2.el7.noarch.rpm qpid-proton-tests-0.30.0-2.el7.noarch.rpm rubygem-qpid_proton-doc-0.30.0-1.el7.noarch.rpm x86_64: python-qpid-proton-0.30.0-2.el7.x86_64.rpm qpid-proton-c-0.30.0-2.el7.x86_64.rpm qpid-proton-c-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-debuginfo-0.30.0-2.el7.x86_64.rpm rubygem-qpid_proton-0.30.0-1.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.30.0-1.el7.x86_64.rpm 7ComputeNode-AMQ-Clients-2: Source: qpid-proton-0.30.0-2.el7.src.rpm rubygem-qpid_proton-0.30.0-1.el7.src.rpm noarch: python-qpid-proton-docs-0.30.0-2.el7.noarch.rpm qpid-proton-c-docs-0.30.0-2.el7.noarch.rpm qpid-proton-cpp-docs-0.30.0-2.el7.noarch.rpm qpid-proton-tests-0.30.0-2.el7.noarch.rpm rubygem-qpid_proton-doc-0.30.0-1.el7.noarch.rpm x86_64: python-qpid-proton-0.30.0-2.el7.x86_64.rpm qpid-proton-c-0.30.0-2.el7.x86_64.rpm qpid-proton-c-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-debuginfo-0.30.0-2.el7.x86_64.rpm rubygem-qpid_proton-0.30.0-1.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.30.0-1.el7.x86_64.rpm 7Server-AMQ-Clients-2: Source: qpid-proton-0.30.0-2.el7.src.rpm rubygem-qpid_proton-0.30.0-1.el7.src.rpm noarch: python-qpid-proton-docs-0.30.0-2.el7.noarch.rpm qpid-proton-c-docs-0.30.0-2.el7.noarch.rpm qpid-proton-cpp-docs-0.30.0-2.el7.noarch.rpm qpid-proton-tests-0.30.0-2.el7.noarch.rpm rubygem-qpid_proton-doc-0.30.0-1.el7.noarch.rpm x86_64: python-qpid-proton-0.30.0-2.el7.x86_64.rpm qpid-proton-c-0.30.0-2.el7.x86_64.rpm qpid-proton-c-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-debuginfo-0.30.0-2.el7.x86_64.rpm rubygem-qpid_proton-0.30.0-1.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.30.0-1.el7.x86_64.rpm 7Workstation-AMQ-Clients-2: Source: qpid-proton-0.30.0-2.el7.src.rpm rubygem-qpid_proton-0.30.0-1.el7.src.rpm noarch: python-qpid-proton-docs-0.30.0-2.el7.noarch.rpm qpid-proton-c-docs-0.30.0-2.el7.noarch.rpm qpid-proton-cpp-docs-0.30.0-2.el7.noarch.rpm qpid-proton-tests-0.30.0-2.el7.noarch.rpm rubygem-qpid_proton-doc-0.30.0-1.el7.noarch.rpm x86_64: python-qpid-proton-0.30.0-2.el7.x86_64.rpm qpid-proton-c-0.30.0-2.el7.x86_64.rpm qpid-proton-c-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-0.30.0-2.el7.x86_64.rpm qpid-proton-cpp-devel-0.30.0-2.el7.x86_64.rpm qpid-proton-debuginfo-0.30.0-2.el7.x86_64.rpm rubygem-qpid_proton-0.30.0-1.el7.x86_64.rpm rubygem-qpid_proton-debuginfo-0.30.0-1.el7.x86_64.rpm 8Base-AMQ-Clients-2: Source: nodejs-rhea-1.0.16-1.el8.src.rpm qpid-proton-0.30.0-3.el8.src.rpm rubygem-qpid_proton-0.30.0-1.el8.src.rpm noarch: nodejs-rhea-1.0.16-1.el8.noarch.rpm python-qpid-proton-docs-0.30.0-3.el8.noarch.rpm qpid-proton-c-docs-0.30.0-3.el8.noarch.rpm qpid-proton-cpp-docs-0.30.0-3.el8.noarch.rpm qpid-proton-tests-0.30.0-3.el8.noarch.rpm rubygem-qpid_proton-doc-0.30.0-1.el8.noarch.rpm x86_64: python3-qpid-proton-0.30.0-3.el8.x86_64.rpm python3-qpid-proton-debuginfo-0.30.0-3.el8.x86_64.rpm qpid-proton-c-0.30.0-3.el8.x86_64.rpm qpid-proton-c-debuginfo-0.30.0-3.el8.x86_64.rpm qpid-proton-c-devel-0.30.0-3.el8.x86_64.rpm qpid-proton-cpp-0.30.0-3.el8.x86_64.rpm qpid-proton-cpp-debuginfo-0.30.0-3.el8.x86_64.rpm qpid-proton-cpp-devel-0.30.0-3.el8.x86_64.rpm qpid-proton-debuginfo-0.30.0-3.el8.x86_64.rpm qpid-proton-debugsource-0.30.0-3.el8.x86_64.rpm rubygem-qpid_proton-0.30.0-1.el8.x86_64.rpm rubygem-qpid_proton-debuginfo-0.30.0-1.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 8. References: https://access.redhat.com/security/cve/CVE-2019-20444 https://access.redhat.com/security/cve/CVE-2019-20445 https://access.redhat.com/security/cve/CVE-2020-7238 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/documentation/en-us/red_hat_amq/ 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXlU9u9zjgjWX9erEAQjJRg/9EWdSUKhNIQBO7WFXvi/PO/2ebxBePbDH l0mUNYaOeKyLJvSDLdE8OY25r1zdG6ZgrZLsiPUV31MLlyqXIUXPpFaylv74yZDy /oP8HnhaHQ29/RhooT5QLxqyCF7f4Bh+1C8VrrwSVKVvlt0Nwz3pC2uZudD6qv8r juZ8qNjWaQrD5RjWNKljRIzP/VWTU+9GTpACHmK5aTzcN+IgwSP+xJ9oIxnCvjNZ OhEPTnbYwVA645klWUpFKlj/eFIPSVl3/LTY3F5U1RPlU8qAGIBqPS6gUJSvFg5i HPOSa0yhFYD7jnPOR4SC24+/eLJaroP+GmnujWGSR10wnE4UZzoFtaw1OJblMdPt 8Ucs5Y0h7KBZwirSLVKEn8hW92cb3IjnCWde4aZjg46fbXrpeGi0tCtE+gh3shUC 3EBEtgU3/I3FoakQty7ePe6YHfFN3+u8Z3TsIQ9GJUCtZj/eeQyqGKLFgAncA6O6 cfZTDMzDU36snL11T8hAcVi2AKoJTxkbqzKy/A28xT11FYrGAGkATsb7mH16CRb9 zFmcsOEdNYBnh7r6QIeJmo0dyFLvAHUfjTabYqimPqABqhvjPeWc2OH5wXuyxV7l nHSLM62VhwLcRF5AAvxaNL+QE1B0GUH69Bhqn++0iTVoop0vluvE0DS5T4Gu0AYQ ZlNPuesCwnc=ypok -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat AMQ Clients version 2.6.0 has been designated as Important, addressing HTTP request problems while improving overall system efficiency.. Red Hat Security, AMQ Clients Update, HTTP Request Resolution, Important Security Advisory. . Severity: Important. LinuxSecurity.com Team

Feb 25, 2020 •Important Red Hat

security advisorysecurity issueupdate

RedHat: RHSA-2019-0886-01 Important: AMQ Clients 2.3.1 TLS Issue

Updated Red Hat AMQ Clients 2.3.1 packages are now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: AMQ Clients 2.3.1 release and security update Advisory ID: RHSA-2019:0886-01 Product: Red Hat AMQ Clients Advisory URL: https://access.redhat.com/errata/RHSA-2019:0886 Issue date: 2019-04-25 CVE Names: CVE-2019-0223 ==================================================================== 1. Summary: Updated Red Hat AMQ Clients 2.3.1 packages are now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: 6Client-AMQ-Clients-2 - i386, noarch, x86_64 6ComputeNode-AMQ-Clients-2 - noarch, x86_64 6Server-AMQ-Clients-2 - i386, noarch, x86_64 6Workstation-AMQ-Clients-2 - i386, noarch, x86_64 7Client-AMQ-Clients-2 - noarch, x86_64 7ComputeNode-AMQ-Clients-2 - noarch, x86_64 7Server-AMQ-Clients-2 - noarch, x86_64 7Workstation-AMQ-Clients-2 - noarch, x86_64 3. Description: Red Hat AMQ Clients enable connecting, sending, and receiving messages over the AMQP 1.0 wire transport protocol to or from AMQ Broker 6 and 7. This update provides various bug fixes and enhancements in addition to the client package versions previously released on Red Hat Enterprise Linux 6 and 7. Security Fix(es): * qpid-proton: TLS Man in the Middle Vulnerability (CVE-2019-0223) For more details about the security issue(s), including the impact, a CVSS score, and other relatedinformation, refer to the CVE page(s) listed in the References section. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1702439 - CVE-2019-0223 qpid-proton: TLS Man in the Middle Vulnerability 6. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): ENTMQCL-1294 - CVE-2019-0223: qpid-proton: TLS Man in the Middle Vulnerability [amq-cl-2] 7. PackageList: 6Client-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el6.src.rpm i386: python-qpid-proton-0.27.0-3.el6.i686.rpm qpid-proton-c-0.27.0-3.el6.i686.rpm qpid-proton-c-devel-0.27.0-3.el6.i686.rpm qpid-proton-cpp-0.27.0-3.el6.i686.rpm qpid-proton-cpp-devel-0.27.0-3.el6.i686.rpm qpid-proton-debuginfo-0.27.0-3.el6.i686.rpm noarch: python-qpid-proton-docs-0.27.0-3.el6.noarch.rpm qpid-proton-c-docs-0.27.0-3.el6.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el6.noarch.rpm qpid-proton-tests-0.27.0-3.el6.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el6.x86_64.rpm qpid-proton-c-0.27.0-3.el6.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el6.x86_64.rpm 6ComputeNode-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el6.src.rpm noarch: python-qpid-proton-docs-0.27.0-3.el6.noarch.rpm qpid-proton-c-docs-0.27.0-3.el6.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el6.noarch.rpm qpid-proton-tests-0.27.0-3.el6.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el6.x86_64.rpm qpid-proton-c-0.27.0-3.el6.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el6.x86_64.rpm 6Server-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el6.src.rpm i386: python-qpid-proton-0.27.0-3.el6.i686.rpm qpid-proton-c-0.27.0-3.el6.i686.rpm qpid-proton-c-devel-0.27.0-3.el6.i686.rpm qpid-proton-cpp-0.27.0-3.el6.i686.rpm qpid-proton-cpp-devel-0.27.0-3.el6.i686.rpm qpid-proton-debuginfo-0.27.0-3.el6.i686.rpm noarch: python-qpid-proton-docs-0.27.0-3.el6.noarch.rpm qpid-proton-c-docs-0.27.0-3.el6.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el6.noarch.rpm qpid-proton-tests-0.27.0-3.el6.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el6.x86_64.rpm qpid-proton-c-0.27.0-3.el6.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el6.x86_64.rpm 6Workstation-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el6.src.rpm i386: python-qpid-proton-0.27.0-3.el6.i686.rpm qpid-proton-c-0.27.0-3.el6.i686.rpm qpid-proton-c-devel-0.27.0-3.el6.i686.rpm qpid-proton-cpp-0.27.0-3.el6.i686.rpm qpid-proton-cpp-devel-0.27.0-3.el6.i686.rpm qpid-proton-debuginfo-0.27.0-3.el6.i686.rpm noarch: python-qpid-proton-docs-0.27.0-3.el6.noarch.rpm qpid-proton-c-docs-0.27.0-3.el6.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el6.noarch.rpm qpid-proton-tests-0.27.0-3.el6.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el6.x86_64.rpm qpid-proton-c-0.27.0-3.el6.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-0.27.0-3.el6.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el6.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el6.x86_64.rpm 7Client-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el7.src.rpm noarch: python-qpid-proton-docs-0.27.0-3.el7.noarch.rpm qpid-proton-c-docs-0.27.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el7.noarch.rpm qpid-proton-tests-0.27.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el7.x86_64.rpm qpid-proton-c-0.27.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el7.x86_64.rpm 7ComputeNode-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el7.src.rpm noarch: python-qpid-proton-docs-0.27.0-3.el7.noarch.rpm qpid-proton-c-docs-0.27.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el7.noarch.rpm qpid-proton-tests-0.27.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el7.x86_64.rpm qpid-proton-c-0.27.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el7.x86_64.rpm 7Server-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el7.src.rpm noarch: python-qpid-proton-docs-0.27.0-3.el7.noarch.rpm qpid-proton-c-docs-0.27.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el7.noarch.rpm qpid-proton-tests-0.27.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el7.x86_64.rpm qpid-proton-c-0.27.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el7.x86_64.rpm 7Workstation-AMQ-Clients-2: Source: qpid-proton-0.27.0-3.el7.src.rpm noarch: python-qpid-proton-docs-0.27.0-3.el7.noarch.rpm qpid-proton-c-docs-0.27.0-3.el7.noarch.rpm qpid-proton-cpp-docs-0.27.0-3.el7.noarch.rpm qpid-proton-tests-0.27.0-3.el7.noarch.rpm x86_64: python-qpid-proton-0.27.0-3.el7.x86_64.rpm qpid-proton-c-0.27.0-3.el7.x86_64.rpm qpid-proton-c-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-0.27.0-3.el7.x86_64.rpm qpid-proton-cpp-devel-0.27.0-3.el7.x86_64.rpm qpid-proton-debuginfo-0.27.0-3.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 8. References: https://access.redhat.com/security/cve/CVE-2019-0223 https://access.redhat.com/security/updates/classification/#important https://docs.redhat.com/en/documentation/red_hat_amq/2021.q4/ 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBXMFmANzjgjWX9erEAQhWOA/7Bqozi6cF2fu9KJ2HrZSeHlBb0d/sqy8p +/PAWvTokYp0ZuzyBDEPYczX/t1jxnDf0nkSfoM7YUN0sE+2lDqVEamfdhM/At8f jJTw/yFJcbClBAHgD+BlTVDQns2tVtkCWqai1Q4atVKuGmmqauH78Y7JnNqNXq1F BPSrb9yyfEpyMgasG/6pH+vL+/k43/EInRVcIKaYhX0XFwvC2l2j06ImdCH0xxrg XLq3Vs7uB4Gv0R1hRZslw0Y4wF8nziUHYpPJcA+Ogx+ovDFT8YJQ15p2Fqdwf7On SPPM56kZLa7Xz1DXDETqUmExgnGRqsllHHlIid0hZI2I23qzV6xQ+EolL/yFW9vm ePGr7Ur9OzdvTWugaFZtOXRug0rPe9U1RAMtJR6v9i8jVju1/7dnxaNWsOEBbOs9 yNxBgXFTEcJXSpuK5GbkMDfnhYlrVzs+jetcnaKgyro2rAOlJzMqNVDBWm4gOLao 3LXycEtvoXZq7q0EehMmZWfjjSADrMddHDQXHm7jCd4JoAoOR+S5QNSQZLUB6Dng CnlpIE4YJfwEEtJDbi7m36+tKbLT9tJVgPVJpd4Cr1chVjEJcsrNfctN190bxvAT iBF+dg6U4NXUkclmYjhy8sGWEiJa8c9SfwFtkKrwarPCXVwoyTEQL7fcPCy8+yCY Yqtn+S6Mr0A=u9Uq -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . The latest version of Red Hat AMQ Clients 2.3.1 is now released, featuring crucial security enhancements. You can access the update and download it today.. Red Hat AMQ, Security Update, Important Advisory, TLS Issue. . Severity: Important. LinuxSecurity.com Team

Apr 25, 2019 •Important Red Hat

Stay Secure with the Latest Linux Advisories

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

Red Hat AMQ Clients 2.7.0 RHSA-2020:2605-01 Low Severity: Buffer Overflow

RedHat: RHSA-2020-0601-01 Important: HTTP Request Fix in AMQ Clients 2.6.0

RedHat: RHSA-2019-0886-01 Important: AMQ Clients 2.3.1 TLS Issue

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

openSUSE Chromedriver Moderate Security Issues Fixed 2026-10958-1

openSUSE Tumbleweed libmozjs Moderate Update CVE-2025-70103

openSUSE Tumbleweed Perl HTML Parser Moderate CVE-2026-8829 Advisory

openSUSE Tumbleweed kernel-devel Moderate Security Issue 2026-10954-1

openSUSE Tumbleweed Gleam Moderate Threat Fixed 2026-10953-1

Ubuntu 25.10 Systemd Critical Arbitrary Code Exec DNS Issues USN-8402-1

openSUSE Epiphany Important Password Handling Issue CVE-2023-26081

Ubuntu 26.04 LTS 8399-1 Pillow Denial of Service Risk CVE-2026-42308

Ubuntu 26.04 LTS Poppler Critical DoS Code Execution Vuln USN-8400-1

Refine advisories

severity

Topics

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!