SECURITY: Fedora 33 Update: mosquitto-1.6.15-1.fc33
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-2ab613b45b
2021-06-19 01:13:49.915783
--------------------------------------------------------------------------------
Name : mosquitto
Product : Fedora 33
Version : 1.6.15
Release : 1.fc33
URL : http://mosquitto.org/
Summary : Open Source MQTT v3.1/v3.1.1 Broker
Description :
Mosquitto is an open source message broker that implements the MQ Telemetry
Transport protocol version 3.1 and 3.1.1 MQTT provides a lightweight method
of carrying out messaging using a publish/subscribe model. This makes it
suitable for "machine to machine" messaging such as with low power sensors
or mobile devices such as phones, embedded computers or micro-controllers
like the Arduino.
--------------------------------------------------------------------------------
Update Information:
Update to 1.6.15 Security If an authenticated client connected with MQTT v5
sent a crafted CONNECT message to the broker a memory leak would occur. Affects
versions 1.6 to 2.0.10 inclusive.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 10 2021 Peter Robinson - 1.6.15-1
- Update to 1.6.15
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-2ab613b45b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
A mosquitto security update has been released for Fedora 33.