Alerts This Week
Warning Icon 1 687
Alerts This Week
Warning Icon 1 687

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -1 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysecurity updatedebian

Debian LTS: DLA-4096-1: librabbitmq Security Advisory Updates

An issue has been found in librabbitmq, a AMQP client library and tools written in C. The issue is related to credential visibility when . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4096-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Thorsten Alteholz March 30, 2025 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : librabbitmq Version : 0.10.0-1+deb11u1 CVE ID : CVE-2023-35789 An issue has been found in librabbitmq, a AMQP client library and tools written in C. The issue is related to credential visibility when using the tools on the command line. For Debian 11 bullseye, this problem has been fixed in version 0.10.0-1+deb11u1. We recommend that you upgrade your librabbitmq packages. For the detailed security status of librabbitmq please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/librabbitmq Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . A security advisory for librabbitmq addresses credential visibility issues in Debian LTS. Update required for protection.. found, librabbitmq, client, library, tools, written. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 29, 2025 Important Debian LTS
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderateRed Hat

Red Hat: RHSA-2020:4445-01 Moderate: librabbitmq Heap Overflow

An update for librabbitmq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: librabbitmq security update Advisory ID: RHSA-2020:4445-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:4445 Issue date: 2020-11-03 CVE Names: CVE-2019-18609 ==================================================================== 1. Summary: An update for librabbitmq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat CodeReady Linux Builder (v. 8) - aarch64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux BaseOS (v. 8) - aarch64, ppc64le, s390x, x86_64 3. Description: The librabbitmq packages provide an Advanced Message Queuing Protocol (AMQP) client library that allows you to communicate with AMQP serversusing protocol version 0-9-1. Security Fix(es): * librabbitmq: integer overflow in amqp_handle_input in amqp_connection.c leads to heap-based buffer overflow (CVE-2019-18609) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section. 4.Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1786646 - CVE-2019-18609 librabbitmq: integer overflow in amqp_handle_input in amqp_connection.c leads to heap-based buffer overflow 6. Package List: Red Hat Enterprise Linux BaseOS (v. 8): Source: librabbitmq-0.9.0-2.el8.src.rpm aarch64: librabbitmq-0.9.0-2.el8.aarch64.rpm librabbitmq-debuginfo-0.9.0-2.el8.aarch64.rpm librabbitmq-debugsource-0.9.0-2.el8.aarch64.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.aarch64.rpm ppc64le: librabbitmq-0.9.0-2.el8.ppc64le.rpm librabbitmq-debuginfo-0.9.0-2.el8.ppc64le.rpm librabbitmq-debugsource-0.9.0-2.el8.ppc64le.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.ppc64le.rpm s390x: librabbitmq-0.9.0-2.el8.s390x.rpm librabbitmq-debuginfo-0.9.0-2.el8.s390x.rpm librabbitmq-debugsource-0.9.0-2.el8.s390x.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.s390x.rpm x86_64: librabbitmq-0.9.0-2.el8.i686.rpm librabbitmq-0.9.0-2.el8.x86_64.rpm librabbitmq-debuginfo-0.9.0-2.el8.i686.rpm librabbitmq-debuginfo-0.9.0-2.el8.x86_64.rpm librabbitmq-debugsource-0.9.0-2.el8.i686.rpm librabbitmq-debugsource-0.9.0-2.el8.x86_64.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.i686.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.x86_64.rpm Red Hat CodeReady Linux Builder (v.8): aarch64: librabbitmq-debuginfo-0.9.0-2.el8.aarch64.rpm librabbitmq-debugsource-0.9.0-2.el8.aarch64.rpm librabbitmq-devel-0.9.0-2.el8.aarch64.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.aarch64.rpm ppc64le: librabbitmq-debuginfo-0.9.0-2.el8.ppc64le.rpm librabbitmq-debugsource-0.9.0-2.el8.ppc64le.rpm librabbitmq-devel-0.9.0-2.el8.ppc64le.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.ppc64le.rpm s390x: librabbitmq-debuginfo-0.9.0-2.el8.s390x.rpm librabbitmq-debugsource-0.9.0-2.el8.s390x.rpm librabbitmq-devel-0.9.0-2.el8.s390x.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.s390x.rpm x86_64: librabbitmq-debuginfo-0.9.0-2.el8.i686.rpm librabbitmq-debuginfo-0.9.0-2.el8.x86_64.rpm librabbitmq-debugsource-0.9.0-2.el8.i686.rpm librabbitmq-debugsource-0.9.0-2.el8.x86_64.rpm librabbitmq-devel-0.9.0-2.el8.i686.rpm librabbitmq-devel-0.9.0-2.el8.x86_64.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.i686.rpm librabbitmq-tools-debuginfo-0.9.0-2.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-18609 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.3_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX6IxYdzjgjWX9erEAQiApQ/9F7Nif9dVrMaBZkY1G4HGRVpPvB6xMj54 MKjSAu7mpIxyQjQaXlpi/4ABLYAPe3aZJSZf7gq6uPOWrLpd9t+1gGAz159c36Nd gsuwkqyfgcMlDr8dto1QJEgfVuNIqmd2AGigM9CT7pgwjIdC2HKXk9aa49YTMYMS bPhd7MTu9U9AFVC2xjlAWtKqQqMvT51CCuBseXgEEXj8dKUmjI3uYFiK4C23AktS g3a8AMwNx8ovtj/BGkg1I1vMsrz3TyqAdXwkudnKVMO6lgAPDkbK63jIR/WU+L4N VjnsEUHgHjjvXKqjo4x8R+qAr4ZBD+yvtm1s1UlCysMHbWhv5YrEKWpHWa6Zn+zk O3XRtZ6U7hCP7kifcZvPvQajdempNkd7iVthrqQbWivXixJ20+rQkkZkTTWwMmOu uQrO+YpJ5qrw2p8vTmJtecuFoUHVpVKmUEHotg70Jk5FqiMHkQ8iDO621Qw68pmk tU6agCsWeHoyE0cKOZoFShbkFilEAJv8QziFXXZkB14uhjiEPdeISfFRpUHk3yZM KsLW1q4L4sFiaNFOLW+YHwHgN6wx8YDGBiXKltdxpDO7JZabrbdT9ww1kAhDN7uG 9SIO14o5UbbQq4mHL2Dkv6S2JI9AaQLip7hc3dWNLNE8QSjx+1KJr6sJ8M6EyX7x mO9RTMllbuw=eb8i -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Red Hat releases a moderate security notice regarding librabbitmq that pertains to an integer overflow resulting in a potential buffer overflow vulnerability.. Red Hat, librabbitmq, security advisory, moderate impact, buffer overflow. . LinuxSecurity.com Team

Calendar 2 Nov 03, 2020 Red Hat
Banner 3 1028x280 1708121785 1771599793
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorymoderatebuffer overflow

Red Hat Enterprise Linux 7: RHSA-2020:3949-01 Moderate: Buffer Overflow

An update for librabbitmq is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: librabbitmq security update Advisory ID: RHSA-2020:3949-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:3949 Issue date: 2020-09-29 CVE Names: CVE-2019-18609 ==================================================================== 1. Summary: An update for librabbitmq is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The librabbitmq packages provide an Advanced Message Queuing Protocol (AMQP) client library that allows you to communicate with AMQP serversusing protocol version 0-9-1. Security Fix(es): * librabbitmq: integer overflow in amqp_handle_input in amqp_connection.c leads to heap-based buffer overflow (CVE-2019-18609) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other relatedinformation, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1786646 - CVE-2019-18609 librabbitmq: integer overflow in amqp_handle_input in amqp_connection.c leads to heap-based buffer overflow 6. Package List: Red Hat Enterprise Linux ComputeNode (v. 7): Source: librabbitmq-0.8.0-3.el7.src.rpm x86_64: librabbitmq-0.8.0-3.el7.i686.rpm librabbitmq-0.8.0-3.el7.x86_64.rpm librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm librabbitmq-devel-0.8.0-3.el7.i686.rpm librabbitmq-devel-0.8.0-3.el7.x86_64.rpm librabbitmq-examples-0.8.0-3.el7.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: librabbitmq-0.8.0-3.el7.src.rpm ppc64: librabbitmq-0.8.0-3.el7.ppc.rpm librabbitmq-0.8.0-3.el7.ppc64.rpm librabbitmq-debuginfo-0.8.0-3.el7.ppc.rpm librabbitmq-debuginfo-0.8.0-3.el7.ppc64.rpm ppc64le: librabbitmq-0.8.0-3.el7.ppc64le.rpm librabbitmq-debuginfo-0.8.0-3.el7.ppc64le.rpm s390x: librabbitmq-0.8.0-3.el7.s390.rpm librabbitmq-0.8.0-3.el7.s390x.rpm librabbitmq-debuginfo-0.8.0-3.el7.s390.rpm librabbitmq-debuginfo-0.8.0-3.el7.s390x.rpm x86_64: librabbitmq-0.8.0-3.el7.i686.rpm librabbitmq-0.8.0-3.el7.x86_64.rpm librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): ppc64: librabbitmq-debuginfo-0.8.0-3.el7.ppc.rpm librabbitmq-debuginfo-0.8.0-3.el7.ppc64.rpm librabbitmq-devel-0.8.0-3.el7.ppc.rpm librabbitmq-devel-0.8.0-3.el7.ppc64.rpm librabbitmq-examples-0.8.0-3.el7.ppc64.rpm ppc64le: librabbitmq-debuginfo-0.8.0-3.el7.ppc64le.rpm librabbitmq-devel-0.8.0-3.el7.ppc64le.rpm librabbitmq-examples-0.8.0-3.el7.ppc64le.rpm s390x: librabbitmq-debuginfo-0.8.0-3.el7.s390.rpm librabbitmq-debuginfo-0.8.0-3.el7.s390x.rpm librabbitmq-devel-0.8.0-3.el7.s390.rpm librabbitmq-devel-0.8.0-3.el7.s390x.rpm librabbitmq-examples-0.8.0-3.el7.s390x.rpm x86_64: librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm librabbitmq-devel-0.8.0-3.el7.i686.rpm librabbitmq-devel-0.8.0-3.el7.x86_64.rpm librabbitmq-examples-0.8.0-3.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: librabbitmq-0.8.0-3.el7.src.rpm x86_64: librabbitmq-0.8.0-3.el7.i686.rpm librabbitmq-0.8.0-3.el7.x86_64.rpm librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: librabbitmq-debuginfo-0.8.0-3.el7.i686.rpm librabbitmq-debuginfo-0.8.0-3.el7.x86_64.rpm librabbitmq-devel-0.8.0-3.el7.i686.rpm librabbitmq-devel-0.8.0-3.el7.x86_64.rpm librabbitmq-examples-0.8.0-3.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-18609 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX3OjkdzjgjWX9erEAQhqoQ//bDEmtr09kB3tNsueySxTvQzx/IMTckmP 9bfpjsvzPb0ra6bjQ5U4k3fzx/Iz0tq4IkQ0r6RqiqhytKBttaCGKcLirAaojXJx iHlrH6LjOE3C5rsqshEv//ymN5xaBM2QhmnrfWhubiXSP1Vro3jITSREyACv24eq hHCIE6Z1qpoIkPw4VgRN5wVwWTJ7KdF1FkEVaUQekd0Ld06949NdAJU10LVYV0DR CmsASNpK6WO4dz/kFsSRT64jcS+lz3EjZCtNoXiNPYrvI6cJTl3QkD0AY0Z6gR6q qbP/+Y3TJ7XP1LnTJ3ebBqAXphs+Vki1jvuZNBEm89WATWtKJQxOb7OmGPOEA0MB y1UazrhsaIzZdKi7S1rPe4phU/tRhYNvgUfyH+CwyKUd7S+EiULKDZJdpB47uV+9 1L6RsH29n37k4MTXIvbQloanz4MBnEIJwKCJIoD1mOM4joRhvP/j0zIYXLU+/Wfi rYNJi9ChknOV7BWV/Iupu9Nt6EG30bC4oLPM1q6QpRpn5JVQYF8umGzDp2voIY9t puLdA00MjMqyUVX1IUPjw/2VWwP/wOSAkWiwTJXcX2UL7urtRBbIGC7tT3eUzeqo Qpl/eKUDSgUFCyr/hhpCrND37boIVmFkW+3If7cNn83FmbmA5sA/yoi6h2Xk4TM/ +YEy/bdXFuI=/PRZ -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A new release for librabbitmq resolves a significant vulnerability within Red Hat Enterprise Linux 7 that pertains to buffer overflow concerns.. librabbitmq Update, Red Hat Advisory, Linux Security Update. . LinuxSecurity.com Team

Calendar 2 Sep 29, 2020 Red Hat
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryarbitrary code executionUbuntu

Ubuntu 4214-2: Moderate Librabbitmq Code Execution Threat

RabbitMQ could be made to execute arbitrary code if it received a specially crafted input.. =========================================================================Ubuntu Security Notice USN-4214-2 December 11, 2019 librabbitmq vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: RabbitMQ could be made to execute arbitrary code if it received a specially crafted input. Software Description: - librabbitmq: Command-line utilities for interacting with AMQP servers Details: USN-4214-1 fixed a vulnerability in RabbitMQ. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that RabbitMQ incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: amqp-tools 0.8.0-1ubuntu0.18.04.2 librabbitmq4 0.8.0-1ubuntu0.18.04.2 Ubuntu 16.04 LTS: amqp-tools 0.7.1-1ubuntu0.2 librabbitmq-dev 0.7.1-1ubuntu0.2 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4214-2 https://ubuntu.com/security/notices/USN-4214-1 CVE-2019-18609 Package Information: https://launchpad.net/ubuntu/+source/librabbitmq/0.8.0-1ubuntu0.18.04.2 https://launchpad.net/ubuntu/+source/librabbitmq/0.7.1-1ubuntu0.2 . Ubuntu Security Advisory USN-4214-3 highlights a critical vulnerability in librabbitmq impacting various releases.. RabbitMQ, Ubuntu Security Notice, Code Execution, Input Handling. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Dec 11, 2019 Important Ubuntu
Banner 3 1028x280 1708121785 1771599793
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorysoftware updateFedora

Fedora 30: FEDORA-2019-dd7c8f5435 Moderate: librabbitmq Security Fix

**Added:** * amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX* associated with a connection. **Changed:** * openssl: missing OpenSSL config is ignored as an OpenSSL init error (#523) * AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel limit in the RabbitMQ broker. (#513) **Fixed:** * add additional input. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-dd7c8f5435 2019-12-10 03:03:41.437135 --------------------------------------------------------------------------------Name : librabbitmq Product : Fedora 30 Version : 0.10.0 Release : 1.fc30 URL : https://github.com/alanxz/rabbitmq-c Summary : Client library for AMQP Description : This is a C-language AMQP client library for use with AMQP servers speaking protocol versions 0-9-1. --------------------------------------------------------------------------------Update Information: **Added:** * amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX* associated with a connection. **Changed:** * openssl: missing OpenSSL config is ignored as an OpenSSL init error (#523) * AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel limit in the RabbitMQ broker. (#513) **Fixed:** * add additional input validation to prevent integer overflow when parsing a frame header. This addresses **CVE-2019-18609**. --------------------------------------------------------------------------------ChangeLog: * Mon Dec 2 2019 Remi Collet - 0.10.0-1 - update to 0.10.0 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-dd7c8f5435' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Librabbitmq upgrade for Fedora 31 launched, tackling vulnerabilities and refining default configurations to boost efficiency.. Fedora 30 Update,librabbitmq,OpenSSL context,AMQP client. . LinuxSecurity.com Team

Calendar 2 Dec 09, 2019 Fedora
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryFedoraOpenSSL

Fedora 31: librabbitmq Update FEDORA-2019-8730b65158 Critical Security Fix

**Added:** * amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX* associated with a connection. **Changed:** * openssl: missing OpenSSL config is ignored as an OpenSSL init error (#523) * AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel limit in the RabbitMQ broker. (#513) **Fixed:** * add additional input. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-8730b65158 2019-12-10 02:54:09.051740 --------------------------------------------------------------------------------Name : librabbitmq Product : Fedora 31 Version : 0.10.0 Release : 1.fc31 URL : https://github.com/alanxz/rabbitmq-c Summary : Client library for AMQP Description : This is a C-language AMQP client library for use with AMQP servers speaking protocol versions 0-9-1. --------------------------------------------------------------------------------Update Information: **Added:** * amqp_ssl_socket_get_context can be used to get the current OpenSSL CTX* associated with a connection. **Changed:** * openssl: missing OpenSSL config is ignored as an OpenSSL init error (#523) * AMQP_DEFAULT_MAX_CHANNELS is now set to 2047 to follow current default channel limit in the RabbitMQ broker. (#513) **Fixed:** * add additional input validation to prevent integer overflow when parsing a frame header. This addresses **CVE-2019-18609**. --------------------------------------------------------------------------------ChangeLog: * Mon Dec 2 2019 Remi Collet - 0.10.0-1 - update to 0.10.0 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-8730b65158' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . The recent update for librabbitmq in Fedora 31 addresses various improvements and bug fixes concerning AMQP protocol handling and security enhancements.. librabbitmq Update Security Fix Fedora AMQP. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 09, 2019 Critical Fedora
Banner 3 1028x280 1708121785 1771599793
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorysoftware updatedebian

Debian 8: DLA-2022-1 Critical: librabbitmq Integer Overflow Fix

It was discovered that there was an integer overflow vulnerability in librabbitmq, a library for robust messaging between applications and servers. . Package : librabbitmq Version : 0.5.2-2+deb8u1 CVE ID : CVE-2019-18609 Debian Bug : #946005 It was discovered that there was an integer overflow vulnerability in librabbitmq, a library for robust messaging between applications and servers. For Debian 8 "Jessie", this issue has been fixed in librabbitmq version 0.5.2-2+deb8u1. We recommend that you upgrade your librabbitmq packages. Regards, - -- ,'`. : :' : Chris Lamb `. `'` This email address is being protected from spambots. You need JavaScript enabled to view it. / chris-lamb.co.uk `- . Integer overflow issue in librabbitmq addressed with a security patch for Debian 8 Jessie.. librabbitmq security, integer overflow fix, Debian update, messaging library patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 06, 2019 Critical Debian LTS
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisoryUbuntuarbitrary code

Ubuntu 19.10: USN-4214-1 Moderate: RabbitMQ Arbitrary Code Execution

RabbitMQ could be made to execute arbitrary code if it received a specially crafted input.. =========================================================================Ubuntu Security Notice USN-4214-1 December 05, 2019 librabbitmq vulnerability ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 19.10 - Ubuntu 19.04 - Ubuntu 14.04 ESM Summary: RabbitMQ could be made to execute arbitrary code if it received a specially crafted input. Software Description: - librabbitmq: Command-line utilities for interacting with AMQP servers Details: It was discovered that RabbitMQ incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 19.10: amqp-tools 0.9.0-0.2ubuntu0.19.10.1 librabbitmq4 0.9.0-0.2ubuntu0.19.10.1 Ubuntu 19.04: amqp-tools 0.9.0-0.2ubuntu0.19.04.1 librabbitmq4 0.9.0-0.2ubuntu0.19.04.1 Ubuntu 14.04 ESM: amqp-tools 0.4.1-1ubuntu0.1~esm1 librabbitmq1 0.4.1-1ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-4214-1 CVE-2019-18609 Package Information: https://launchpad.net/ubuntu/+source/librabbitmq/0.9.0-0.2ubuntu0.19.10.1 https://launchpad.net/ubuntu/+source/librabbitmq/0.9.0-0.2ubuntu0.19.04.1 . Addressing the RabbitMQ security issue in Ubuntu that threatens code execution abilities and overall system stability.. RabbitMQ Security, Ubuntu Updates, Arbitrary Code Execution, librabbitmq Vulnerability. . LinuxSecurity.com Team

Calendar 2 Dec 05, 2019 Ubuntu
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here