Change logs for mosquitto source package in Eoan
-
mosquitto (1.6.6-1) unstable; urgency=high * SECURITY UPDATE: If an MQTT v5 client connects to Mosquitto, sets a last will and testament, sets a will delay interval, sets a session expiry interval, and the will delay interval is set longer than the session expiry interval, then a use after free error occurs, which has the potential to cause a crash in some situations. - CVE awaiting assignment * SECURITY UPDATE: If a malicious MQTT client sends a SUBSCRIBE packet containing a topic that consists of approximately 65400 or more '/' characters, i.e. the topic hierarchy separator, then a stack overflow will occur. - CVE awaiting assignment * New upstream release. * Remove bug-1367.patch. * Don't use killall in mosquitto.logrotate. Closes: #940229. -- Roger A. Light <email address hidden> Tue, 17 Sep 2019 18:41:36 +0100
-
mosquitto (1.6.4-1) unstable; urgency=medium * New upstream release. * Bump standards version to 4.4.0, no changes needed. * bug-1367.patch: fix bug with v5 DISCONNECT packets with remaining_length = 2 being treated as a protocol error. Fixed upstream for 1.6.5 or 1.7. * Added override_dh_makeshlibs for catching symbol errors. * Add --retry to init file as per https://github.com/eclipse/mosquitto/issues/1117 -- Roger A. Light <email address hidden> Thu, 01 Aug 2019 22:51:08 +0100
-
mosquitto (1.5.7-1) unstable; urgency=medium * New upstream release. * Remove fix-step3.patch, fixed upstream. * bug-1162.patch: fix bug with clients being disconnected in some situations when ACLs are in use. -- Roger A. Light <email address hidden> Mon, 18 Feb 2019 09:28:40 +0000