FEDORA-2019-cc896df591

security update in Fedora 30 for mosquitto

Status: stable 5 months ago

1.6.2

Broker:

  • Fix memory access after free, leading to possible crash, when v5 client with Will message disconnects, where the Will message has as its first property one of content-type, correlation-data, payload-format-indicator, or response-topic.
  • Fix build for WITH_TLS=no.
  • Fix Will message not allowing user-property properties.
  • Fix broker originated messages (e.g. $SYS/broker/version) not being published when check_retain_source set to true. Closes #1245.
  • Fix $SYS/broker/version being incorrectly expired after 60 seconds. Closes #1245.

Library:

  • Fix crash after client has been unable to connect to a broker. This occurs when the client is exiting and is part of the final library cleanup routine. Closes #1246.

Clients:

  • Fix -L url parsing. Closes #1248.

1.6.1 release

How to install

sudo dnf upgrade --advisory=FEDORA-2019-cc896df591

Comments 8

This update has been submitted for testing by pbrobinson.

This update has obsoleted mosquitto-1.6.1-1.fc30, and has inherited its bugs and notes.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by pbrobinson.

This update has been submitted for stable by pbrobinson.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+1
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 6 months ago
in testing 5 months ago
in stable 5 months ago

Automated Test Results