4 matches found
Fedora 28 : mosquitto (2018-5acdf115df)
Update to new upstream version 1.5.5 rhbz1660413, rhbz1660414 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Fedora 29 : mosquitto (2018-f80b495582)
Update to new upstream version 1.5.5 rhbz1660413, rhbz1660414 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...
CVE-2018-20145
Eclipse Mosquitto 1.5.x before 1.5.5 allows ACL bypass: if the option perlistenersettings was set to true, and the default listener was in use, and the default listener specified an aclfile, then the acl file was being ignored...
CVE-2018-20145
CVE-2018-20145: Eclipse Mosquitto 1.5.x before 1.5.5 is affected. When per_listener_settings is true and the default listener is used with an acl_file configured, the ACL file is ignored, constituting an ACL bypass risk. Affected software: mosquitto 1.5.x prior to 1.5.5. Root cause: default-liste...