-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 06 Dec 2019 14:40:53 +0000 Source: librabbitmq Binary: librabbitmq-dev librabbitmq-dbg librabbitmq1 amqp-tools Architecture: source amd64 Version: 0.5.2-2+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Michael Fladischer <FladischerMichael@fladi.at> Changed-By: Chris Lamb <lamby@debian.org> Description: amqp-tools - Command-line utilities for interacting with AMQP servers librabbitmq-dbg - AMQP client library written in C - Debug Files librabbitmq-dev - AMQP client library written in C - Dev Files librabbitmq1 - AMQP client library written in C Closes: 946005 Changes: librabbitmq (0.5.2-2+deb8u1) jessie-security; urgency=high . * CVE-2019-18609: Prevent an integer overflow that can lead to heap memory corruption; a rogue server could return a malicious frame header that leads to a smaller value than needed. (Closes: #946005) Checksums-Sha1: 67e357655b9cbbaa182aebcbf2d3a39156377879 2189 librabbitmq_0.5.2-2+deb8u1.dsc 6c442aefbc4477ac0598c05361c767a75d6e1541 144950 librabbitmq_0.5.2.orig.tar.gz 4d5394dff6c19192e5c9895d3e5d570be4711a70 9192 librabbitmq_0.5.2-2+deb8u1.debian.tar.xz e77971ad9aacbadb5e81cf1506c674484d13c391 27948 librabbitmq-dev_0.5.2-2+deb8u1_amd64.deb 548af5f6d4ca968d3d60d9788aac46b4c680190a 195936 librabbitmq-dbg_0.5.2-2+deb8u1_amd64.deb 50a3ea1faf6bc165bdea4adea0bcd6bc555c381d 35782 librabbitmq1_0.5.2-2+deb8u1_amd64.deb 84a3cb9cc23223187e41ce1e4aa44cbd14e1a802 26816 amqp-tools_0.5.2-2+deb8u1_amd64.deb Checksums-Sha256: 7a313b217101c38935c720333df960cc06e3e4e46a16ef2b8ca096217a1ecc83 2189 librabbitmq_0.5.2-2+deb8u1.dsc 418726e830567c296292fd37325d8eeea7b8973c143c4b50b8acf694244ff6a7 144950 librabbitmq_0.5.2.orig.tar.gz fe10f8b06c4299c004598ce0b322c4452fd1519649288d192ab00929a512c7a9 9192 librabbitmq_0.5.2-2+deb8u1.debian.tar.xz f14fd9558aaf26299e02da9b0cae7946d73b0fba0aee88d018d9a54923612bfd 27948 librabbitmq-dev_0.5.2-2+deb8u1_amd64.deb 58baa8975a6b3b8bf7f5721f775646d12415648ab8ede6048395ee7c2b44759e 195936 librabbitmq-dbg_0.5.2-2+deb8u1_amd64.deb d6648829548b299b26883fcd6e40eb179fab5b5f3a9e4876fbb48db727bac9d7 35782 librabbitmq1_0.5.2-2+deb8u1_amd64.deb 18e984c900fb8e9049340eb2db51f0ea4bb7458ac0012b2df803fa7af75be648 26816 amqp-tools_0.5.2-2+deb8u1_amd64.deb Files: ca7a2029efc8648fe678fa4b58cc6bb9 2189 libs optional librabbitmq_0.5.2-2+deb8u1.dsc 0ea60581f635e101c7f3c17a33ace5e4 144950 libs optional librabbitmq_0.5.2.orig.tar.gz 19f079867bc60ff407f451dc623f5322 9192 libs optional librabbitmq_0.5.2-2+deb8u1.debian.tar.xz 0873afcf68dc92db74c51914db062ef0 27948 libdevel optional librabbitmq-dev_0.5.2-2+deb8u1_amd64.deb c941c9a5b25bb8182e3784a51c19ffb0 195936 debug extra librabbitmq-dbg_0.5.2-2+deb8u1_amd64.deb 4cde53b3fbc0a68f1e215955969b2552 35782 libs optional librabbitmq1_0.5.2-2+deb8u1_amd64.deb bbf0f6ff9690f21688ffc4057cd0175c 26816 net optional amqp-tools_0.5.2-2+deb8u1_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAl3qbJwACgkQHpU+J9Qx Hli+nBAAh5pTVv104+o4RyIjD2yyfjwDd/qIr45B7d1VLWrsTbeJEzBPNaMmq/Mq auX5lRvBeHqSamOcdoNPuus9wpt7Nl7H5bYU5+mjimZzccziosEuoEn7+4agnqdA 5cTbVteEKEx+0KJQENc7OiINqnu2OsoNDIf7Sez5N3AhFjTRZ7lvcuRoIv87lQr3 kuR5uihD8APg3PVgj3UBVTWCDKKTYeJdcVMglAWXCOlitr/0eLT4Hg5pMSuNVLfw tslx7pDbTDgCSEtxTph3gg4o4WJ5RFwu1dsnsSKH/d7tnskDMLmVzTeRBgrvIinf KJSnLuEPWKYl9u0RuKHKcTsOgMNFIXpb75j4fyeTLoA5qD23yksXaAfqHrXzMVmC xoLxKEWpbZ+h5hpJMbvO9b4VvaIi02WLcmBg+2/BgHKtS7nt2FnNX1PTe6uHqInp iLivfXIoWkTkNxGbpCrRE4+kFF1wnF9hRgoALCR8px8FTBsCTG04SOdKAlw/aLpw 9t1aj4EHOGRni+QJmPcCSRwoCxDQetMRhupW3+3s/MTBP5YZ/V8wvGUhgcgVFPQ9 UsvSyyfN1w1Gn3zmRvJ9BMVoq8pD6iPCal1ka2RDhOgn8rIM5M2oOHGXja+UckQy GVKf4+23JmhJT9KiaAugu0T3uNr++UorKb2o4lgmzztcjAfSUfk= =5NFN -----END PGP SIGNATURE-----
