rabbitmq-server (3.8.2-1+deb10u2) buster-security; urgency=high * Non-maintainer upload by the LTS team. * Fix CVE-2023-46118: RabbitMQ is a multi-protocol messaging and streaming broker. The HTTP API did not enforce an HTTP request body limit, making it vulnerable for denial of service (DoS) attacks with very large messages by an authenticated user with sufficient credentials. -- Markus Koschany Wed, 13 Dec 2023 22:28:59 +0100 rabbitmq-server (3.8.2-1+deb10u1) buster-security; urgency=high * Non-maintainer upload by the LTS team. * New upstream release. * Fix compatibility with erlang >= 22 and address CVE-2022-37026. -- Markus Koschany Tue, 11 Jul 2023 13:48:09 +0200 rabbitmq-server (3.8.2-0ubuntu1.4) focal; urgency=medium * d/p/lp1999816-fix-rabbitmqctl-status-disk-free-timeout.patch: Fix rabbitmqctl status when free disk space cannot be determined (LP: #1999816). -- Jorge Merlino Wed, 22 Feb 2023 19:47:18 -0300 rabbitmq-server (3.8.2-0ubuntu1.3) focal-security; urgency=medium * SECURITY UPDATE: Denial of service - debian/patches/CVE-2021-22116.patch: treat arrays with extra or missing input as fatal errors in src/amqp10_binary_parser.erl, test/binary_parser_SUITE.erl. - CVE-2021-22116 -- Leonidas Da Silva Barbosa Wed, 23 Jun 2021 10:05:38 -0300 rabbitmq-server (3.8.2-0ubuntu1.2) focal; urgency=medium [ Thomas Goirand ] * d/rabbitmq-server.logrotate: Do not use a sharedscripts, as rabbitmq-server detects the log rotation by itself. (LP: #1921425) -- Utkarsh Gupta Tue, 06 Apr 2021 15:48:23 +0530 rabbitmq-server (3.8.2-0ubuntu1.1) focal; urgency=medium * Fix timeout discrepancy between SysV and systemd (LP: #1874075) upstream, rabbitmq-server-release - 694540270c8 * d/rabbitmq-server.init - Add RABBITMQ_STARTUP_TIMEOUT and default to 600 * d/rabbitmq-server.service - Default TimeoutStartSec to 600 -- Nicolas Bock Tue, 21 Apr 2020 06:37:55 -0600 rabbitmq-server (3.8.2-0ubuntu1) focal; urgency=medium * New upstream release: - d/rules: Install new scripts. * d/rules: Drop --parallel usage, no longer needed. * d/control: Bump minimum erlang version inline with upstream requirements. -- James Page Tue, 04 Feb 2020 09:46:06 +0000 rabbitmq-server (3.7.18-1) unstable; urgency=medium * New upstream release. - Can be built with Elixir 1.9.x (Closes: #939881). * Re-add debian/gbp.conf, as this package must use pristine-tar. * Fix display of version when doing rabbitmqadmin --version. Used a different way from proposed patch which isn't invasive (Closes: #908690). * Using python3 as binary, not python (Closes: #883192). -- Thomas Goirand Mon, 23 Sep 2019 10:05:48 +0200 rabbitmq-server (3.7.8-5) unstable; urgency=medium [ Ondřej Nový ] * Removing gbp.conf, not used anymore or should be specified in the developers dotfiles. * Use debhelper-compat instead of debian/compat. [ Thomas Goirand ] * Also package rabbitmq-diagnostics. -- Thomas Goirand Mon, 17 Jun 2019 22:59:25 +0200 rabbitmq-server (3.7.8-4) unstable; urgency=medium * Remove Elixir version patch. * Build-depends on Elixir 1.6.6. -- Thomas Goirand Tue, 30 Oct 2018 08:28:31 +0000 rabbitmq-server (3.7.8-3) unstable; urgency=medium * Remove $LANG wrapper hack. -- Thomas Goirand Mon, 29 Oct 2018 10:25:25 +0100 rabbitmq-server (3.7.8-2) unstable; urgency=medium * Wrap rabbitmqctl to set $LANG and avoid warning. -- Thomas Goirand Mon, 29 Oct 2018 10:13:27 +0100 rabbitmq-server (3.7.8-1) unstable; urgency=medium [ Daniel Baumann ] * Updating vcs fields. * Updating copyright format url. * Updating maintainer field. * Running wrap-and-sort -bast. * Updating standards version to 4.0.0. * Removing gbp.conf, not used anymore or should be specified in the developers dotfiles. * Correcting permissions in debian packaging files. * Updating standards version to 4.0.1. * Deprecating priority extra as per policy 4.0.1. * Updating standards version to 4.1.0. [ Ondřej Nový ] * d/control: Set Vcs-* to salsa.debian.org * d/changelog: Remove trailing whitespaces * d/control: Use team+openstack@tracker.debian.org as maintainer [ Thomas Goirand ] * New upstream release: - Fix FTBFS with newer Erlang (Closes: #910623). * Fix the way to calculate upstream VERSION in debian/rules. * Switched rabbitmq-server.service to type notify, and other minor changes in this file (Closes: #812342), do not wait for timeout on shutdown either (Closes: #902136). * Updated debian/control for this release. * Bumped debhelper to 10. * Standards-Version is now 4.2.1. * Add patch to accept Elixir 1.6.5. * Also package manpages. -- Thomas Goirand Wed, 24 Oct 2018 18:39:10 +0200 rabbitmq-server (3.6.10-1) unstable; urgency=medium * New upstream release (Closes: #863586), fixing multiple issues: - CVE-2017-4965: XSS vulnerabilities in management UI - CVE-2017-4966: authentication details are stored in browser-local storage without expiration - CVE-2017-4967: XSS vulnerabilities in management UI -- Thomas Goirand Wed, 28 Jun 2017 15:00:41 +0200 rabbitmq-server (3.6.6-1) unstable; urgency=medium [ Ondřej Nový ] * Team upload. * New upstream release (Closes: #849849, CVE-2016-9877) * d/copyright: Fixed for new release * d/ocf: Removed, use upstream one -- Ondřej Kobližek Mon, 02 Jan 2017 15:49:03 +0100 rabbitmq-server (3.6.5-1) unstable; urgency=medium [ James Page ] * New upstream release (Closes: #812377): - Builds fine with the new erlang (Closes: #837241). * [fa2d29e] Update watch file for upstream xz compression. (Closes: #813628). * [b008e08] Imported Upstream version 3.6.0. * [d0dc477] Update gbp configuration for dch use. [ Thomas Goirand ] * Also packaging the rabbitmqadmin cli. * Do not do dh_auto_clean, as it removes all the deps folder. * Disabled tests, as they download from github. * Replaced git-core transition package by git in build-depends. * Added rsync as build-depends-indep. * Fix DESTDIR=$(DEB_DESTDIR) PREFIX=/usr as upstream Makefile changed. * Added python-all and dh-python as build-depends. * Update of debian/copyright for the new deps/* path from upstream, updated debian/* info and fixed order. * Copy some stuff from the upstream pacakging in debian/rules. * Runtime depends on lsb-base. * Overrides lintian false positive error js source missing. [ Ondřej Nový ] * Fixed VCS URLs (https). * Fixed python shebang. * Standards-Version is 3.9.8 now (no change). -- Thomas Goirand Sun, 14 Feb 2016 13:35:22 +0800 rabbitmq-server (3.5.7-1) unstable; urgency=medium * New upstream release. -- James Page Mon, 18 Jan 2016 14:05:40 +0000 rabbitmq-server (3.5.4-3.1) unstable; urgency=medium * Non-maintainer upload. * Make the default configuration file, which is read unconditionally on startup, readable by others. This makes it possible to run rabbitmq-server as users other than rabbitmq, e.g. when running test suites as part of package builds (Closes: #801917) -- Antonio Terceiro Sat, 31 Oct 2015 12:56:15 -0200 rabbitmq-server (3.5.4-3) unstable; urgency=medium * Fix /etc/rabbitmq creation (adding -p to mkdir for upgrades). Thanks to Frederic Peters for the bug report (Closes: #801088). -- Thomas Goirand Tue, 06 Oct 2015 14:07:39 +0000 rabbitmq-server (3.5.4-2) unstable; urgency=medium * Cosmetic clean-up in debian/rabbitmq-server.postinst and .init. * Fix the user / group of /etc/rabbitmq folder and conf files. * Also fix user / group of an eventual /etc/rabbitmq/enabled_plugins when upgrading the package. -- Thomas Goirand Mon, 05 Oct 2015 15:47:58 +0200 rabbitmq-server (3.5.4-1) unstable; urgency=medium * New upstream release. -- James Page Tue, 04 Aug 2015 14:52:31 +0200 rabbitmq-server (3.5.1-2) unstable; urgency=medium [ Tony Breeds ] * systemd: Ensure that rabbitmq has started before marking service as running (LP: #1449056). [ James Page ] * systemd: Drop use of /etc/default/rabbitmq-server. -- James Page Tue, 02 Jun 2015 11:40:59 +0100 rabbitmq-server (3.5.1-1) unstable; urgency=medium * New upstream release. -- James Page Wed, 13 May 2015 21:35:52 +0100 rabbitmq-server (3.4.3-2) unstable; urgency=medium * Restore missing changes from 3.4.2-4. -- James Page Mon, 02 Feb 2015 07:44:33 +0200 rabbitmq-server (3.4.3-1) unstable; urgency=medium * New upstream point release. -- James Page Wed, 28 Jan 2015 16:12:32 +0000 rabbitmq-server (3.4.2-4) unstable; urgency=medium * Re-added /usr/lib/erlang/lib /var/lib/rabbitmq/mnesia and /var/log/rabbitmq which I removed form the package by mistake on the last upload. -- Thomas Goirand Wed, 28 Jan 2015 13:11:02 +0000 rabbitmq-server (3.4.2-3) unstable; urgency=medium * Removes debian/README which is useless (Closes: #703021). * Provides a default /etc/rabbitmq/rabbitmq-env.conf (Closes: #543638). -- Thomas Goirand Tue, 27 Jan 2015 15:08:08 +0100 rabbitmq-server (3.4.2-2) unstable; urgency=medium * d/rabbitmq-server.dirs: Restore missing /etc/rabbitmq directory (LP: #1410155). -- James Page Tue, 13 Jan 2015 09:53:47 +0000 rabbitmq-server (3.4.2-1) unstable; urgency=medium [ James Page ] * New upstream point release. * d/control: Update for new maintainer information, add VCS repository locations. * d/source/format: Switch packaging to source format 3.0 (quilt). * d/compat,control: Bump debhelper compat level to 9. * d/*: wrap-and-sort. * d/*: Move to standard debhelper, drop use of cdbs. * d/rules,control,rabbitmq-server.service: Add systemd service configuration. * d/control: Bumped Standards-Version 3.9.6, no changes. [ Thomas Goirand ] * d/copyright: Rewrote as format 1.0. -- James Page Fri, 19 Dec 2014 11:09:20 +0000 rabbitmq-server (3.4.1-1) unstable; urgency=high * New upstream release. -- Blair Hester Tue, 04 Nov 2014 07:33:44 +0100 rabbitmq-server (3.3.5-1) unstable; urgency=low * New upstream release: - Provides unminimized versions of all bundled Javascript libraries (Closes: #736781). * d/control: Added Blair Hester to Uploaders, dropped Emile Joubert (thanks for all your work Emile!). -- Blair Hester Tue, 12 Aug 2014 11:47:14 +0100 rabbitmq-server (3.3.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 24 Jun 2014 18:00:48 +0100 rabbitmq-server (3.3.3-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 17 Jun 2014 16:59:14 +0100 rabbitmq-server (3.3.1-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 29 Apr 2014 21:05:49 +0100 rabbitmq-server (3.3.0-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 02 Apr 2014 16:23:08 +0100 rabbitmq-server (3.2.4-1.1) unstable; urgency=high * Non-maintainer upload. * Bind on 127.0.0.1 by default, to avoid listening on all ipv6 interface with guest/guest as default configured user. Note that this only fixes *new* installation, and that any already existing setup will have to edit the /etc/rabbitmq/rabbitmq-env.conf manually if affected. (Closes: #727607) * Removed useless and deprecated DM-Upload field. * Cleans plugins-src/rabbitmq-server to be able to build twice. Also cleans debian/postrm which is generated from debian/postrm.in and plugins/README. -- Thomas Goirand Mon, 31 Mar 2014 06:11:46 +0000 rabbitmq-server (3.2.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 04 Mar 2014 13:21:45 +0000 rabbitmq-server (3.2.3-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 23 Jan 2014 16:49:45 +0000 rabbitmq-server (3.2.2-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 11 Dec 2013 17:31:14 +0000 rabbitmq-server (3.2.1-1) unstable; urgency=low * New upstream release -- Emile Joubert Mon, 11 Nov 2013 09:49:42 +0000 rabbitmq-server (3.2.0-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 23 Oct 2013 15:42:19 +0100 rabbitmq-server (3.1.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 07 Aug 2013 15:16:28 +0100 rabbitmq-server (3.1.3-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 27 Jun 2013 14:06:11 +0100 rabbitmq-server (3.1.2-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 25 Jun 2013 11:28:52 +0100 rabbitmq-server (3.1.1-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 28 May 2013 11:15:13 +0100 rabbitmq-server (3.1.0-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 02 May 2013 11:19:31 +0100 rabbitmq-server (3.0.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 13 Mar 2013 10:53:18 +0000 rabbitmq-server (3.0.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 13 Mar 2013 10:53:18 +0000 rabbitmq-server (3.0.3-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 07 Mar 2013 10:03:31 +0000 rabbitmq-server (3.0.2-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 31 Jan 2013 15:28:12 +0000 rabbitmq-server (3.0.1-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 11 Dec 2012 15:47:52 +0000 rabbitmq-server (3.0.0-1) unstable; urgency=low * New upstream release -- Emile Joubert Mon, 19 Nov 2012 11:42:31 +0000 rabbitmq-server (2.8.7-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 27 Sep 2012 16:28:21 +0100 rabbitmq-server (2.8.6-1) unstable; urgency=low * New upstream release -- Emile Joubert Wed, 22 Aug 2012 13:28:21 +0100 rabbitmq-server (2.8.5-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 02 Aug 2012 16:12:21 +0100 rabbitmq-server (2.8.4-1) unstable; urgency=low * New upstream release -- Emile Joubert Fri, 22 Jun 2012 17:48:28 +0100 rabbitmq-server (2.8.3-1) unstable; urgency=low * New upstream release -- Emile Joubert Thu, 21 Jun 2012 13:38:57 +0100 rabbitmq-server (2.8.2-2) unstable; urgency=low * Add version numbers to plugins -- Emile Joubert Tue, 01 May 2012 10:48:57 +0100 rabbitmq-server (2.8.2-1) unstable; urgency=low * New upstream release -- Emile Joubert Mon, 30 Apr 2012 14:07:32 +0100 rabbitmq-server (2.8.1-1) unstable; urgency=low * New upstream release -- Emile Joubert Fri, 23 Mar 2012 10:05:24 +0000 rabbitmq-server (2.8.0-1) unstable; urgency=low * New upstream release -- Emile Joubert Tue, 20 Mar 2012 11:55:10 +0000 rabbitmq-server (2.6.1-2) unstable; urgency=low * Add DM-Upload-Allowed flag to control file to allow Maintainer uploads -- John Leuner Mon, 19 Mar 2012 21:13:54 +0200 rabbitmq-server (2.6.1-1) unstable; urgency=low * New upstream release -- John Leuner Tue, 27 Sep 2011 17:53:57 +0200 rabbitmq-server (2.5.0-1) unstable; urgency=low * New upstream release -- John Leuner Thu, 16 Jun 2011 09:55:40 +0200 rabbitmq-server (2.4.1-1) unstable; urgency=low * New upstream release -- John Leuner Sat, 09 Apr 2011 09:34:06 +0200 rabbitmq-server (2.4.0-1) unstable; urgency=low * New upstream release -- John Leuner Wed, 23 Mar 2011 21:11:17 +0200 rabbitmq-server (2.3.1-1) unstable; urgency=low * New upstream release, closes: #611253 -- John Leuner Sat, 05 Feb 2011 10:21:16 +0200 rabbitmq-server (2.2.0-1) unstable; urgency=low * New upstream release -- John Leuner Thu, 02 Dec 2010 20:41:53 +0200 rabbitmq-server (2.1.0-1) unstable; urgency=low * New upstream release -- John Leuner Mon, 27 Sep 2010 20:28:06 +0200 rabbitmq-server (2.0.0-2) unstable; urgency=low * Fix various scripts that were not updated correctly in - the 2.0.0-1 package, closes: #594724 -- John Leuner Thu, 02 Sep 2010 18:01:37 +0200 rabbitmq-server (2.0.0-1) unstable; urgency=low * New upstream release -- John Leuner Sat, 28 Aug 2010 11:21:48 +0200 rabbitmq-server (1.8.1-1) unstable; urgency=low * New upstream release -- John Leuner Sun, 01 Aug 2010 15:47:46 +0200 rabbitmq-server (1.8.0-1) unstable; urgency=low * New upstream release -- John Leuner Thu, 24 Jun 2010 18:43:04 +0200 rabbitmq-server (1.7.0-3) unstable; urgency=low * Add missing entries in rabbitmq-server.init -- John Leuner Sun, 25 Oct 2009 10:21:25 +0200 rabbitmq-server (1.7.0-2) unstable; urgency=low * moved debian/init.d to rabbitmq-server.init * included fixes to rabbitmq-script-wrapper -- John Leuner Wed, 14 Oct 2009 12:23:52 +0200 rabbitmq-server (1.7.0-1) unstable; urgency=low * New upstream release -- John Leuner Sat, 10 Oct 2009 13:28:39 +0200 rabbitmq-server (1.6.0-1) unstable; urgency=low * New upstream release -- John Leuner Sat, 20 Jun 2009 12:22:17 +0200 rabbitmq-server (1.5.5-3) unstable; urgency=low * debian/control: Reduce Erlang dependencies to just erlang-mnesia and erlang-os-mon, closes: #532867 -- John Leuner Tue, 16 Jun 2009 14:15:20 +0200 rabbitmq-server (1.5.5-2) unstable; urgency=low * Include updates to debian package by rabbit team: - quiet log rotate - update build-depends and depends for new erlang packages - debian/watch file - add rabbitmq-script-wrapper - update init.d scripts - clean /etc/rabbitmq in postrm -- John Leuner Wed, 03 Jun 2009 12:23:50 +0200 rabbitmq-server (1.5.5-1) unstable; urgency=low * New upstream release -- John Leuner Tue, 02 Jun 2009 12:53:32 +0200 rabbitmq-server (1.5.4-4) unstable; urgency=low * Add new dependency on erlang-os-mon to work with new erlang packages in debian -- John Leuner Mon, 11 May 2009 21:20:04 +0200 rabbitmq-server (1.5.4-3) unstable; urgency=low * Previous partial upload failed -- John Leuner Fri, 10 Apr 2009 20:25:51 +0200 rabbitmq-server (1.5.4-2) unstable; urgency=low * Fix incorrect changed-by field in .changes file -- John Leuner Fri, 10 Apr 2009 19:40:04 +0200 rabbitmq-server (1.5.4-1) unstable; urgency=low * New upstream release -- John Leuner Fri, 10 Apr 2009 17:54:21 +0200 rabbitmq-server (1.5.0-5) unstable; urgency=low * Include the full license for amqp-0.8.json in debian/copyright -- John Leuner Fri, 27 Feb 2009 16:16:54 +0200 rabbitmq-server (1.5.0-4) unstable; urgency=low * Clarify and explicitly list the license and copyright for codegen/amqp-0.8.json * Explicitly list the authors and copyright for the rest of the codebase at the top of debian/copyright * Clarify the copyright of the files in src/tcp_* . The rabbitmq authors have confirmed that they are the original authors of this code and that the files at http://code.google.com/p/cacherl/ were taken without their knowledge from the rabbitmq project. (Comparing the commit dates in version control shows that cacherl is newer) -- John Leuner Wed, 25 Feb 2009 13:10:15 +0200 rabbitmq-server (1.5.0-3) unstable; urgency=low * Previous changelog entry had an incorrect Maintainer name -- John Leuner Wed, 28 Jan 2009 16:45:33 +0200 rabbitmq-server (1.5.0-2) unstable; urgency=low * Reupload package to unstable. Mistakenly uploaded to testing last time, closes: #507902 -- John Leuner Mon, 19 Jan 2009 17:38:43 +0200 rabbitmq-server (1.5.0-1) testing; urgency=low * New Upstream Release * First Debian upload, closes: #507902 -- John Leuner Wed, 17 Dec 2008 18:23:47 +0000