Debian Package Tracker

From: Roger A. Light <roger@atchoo.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted mosquitto 1.4.10-3 (source) into unstable
Date: Mon, 29 May 2017 15:20:08 +0000
Signed by: Gianfranco Costamagna <locutusofborg@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 29 May 2017 13:43:29 +0100
Source: mosquitto
Binary: mosquitto mosquitto-dev libmosquitto1 libmosquitto-dev libmosquittopp1 libmosquittopp-dev mosquitto-clients mosquitto-dbg libmosquitto1-dbg libmosquittopp1-dbg
Architecture: source
Version: 1.4.10-3
Distribution: unstable
Urgency: high
Maintainer: Roger A. Light <roger@atchoo.org>
Changed-By: Roger A. Light <roger@atchoo.org>
Description:
 libmosquitto-dev - MQTT version 3.1/3.1.1 client library, development files
 libmosquitto1 - MQTT version 3.1/3.1.1 client library
 libmosquitto1-dbg - debugging symbols for libmosquitto binaries
 libmosquittopp-dev - MQTT version 3.1 client C++ library, development files
 libmosquittopp1 - MQTT version 3.1/3.1.1 client C++ library
 libmosquittopp1-dbg - debugging symbols for libmosquittopp binaries
 mosquitto  - MQTT version 3.1/3.1.1 compatible message broker
 mosquitto-clients - Mosquitto command line MQTT clients
 mosquitto-dbg - debugging symbols for mosquitto binaries
 mosquitto-dev - Development files for Mosquitto
Closes: 857759
Changes:
 mosquitto (1.4.10-3) unstable; urgency=high
 .
   * SECURITY UPDATE: Pattern ACL can be bypassed by using a username/client id
     set to '+' or '#'.
     - debian/patches/mosquitto-0.15_cve-2017-7650.patch: Reject send/receive
       of messages to/from clients with a '+', '#' or '/' in their
       username/client id.
     - CVE-2017-7650
   * New patch debian/patches/allow_ipv6_bridges.patch allows bridges to make
     IPv6 connections when using TLS (closes: #857759).
Checksums-Sha1:
 1a9abe0d479db354ab29561b8e076f0b14fc6068 2501 mosquitto_1.4.10-3.dsc
 4f96df25e45db50d69106afebfa0078d9013babe 26368 mosquitto_1.4.10-3.debian.tar.xz
Checksums-Sha256:
 6de637381d0e320ad94f7effd983b461a174f04ce2931638ab7689d0ff23e85f 2501 mosquitto_1.4.10-3.dsc
 ecba2179b98e1956928a9d4da493bf7e23f7d83831b6940e22f27c812e0e8245 26368 mosquitto_1.4.10-3.debian.tar.xz
Files:
 1e384b419b05d116feb99671caeaaa8e 2501 net optional mosquitto_1.4.10-3.dsc
 dc6af7bc271e18eb75d7c0f53d16d369 26368 net optional mosquitto_1.4.10-3.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQIcBAEBCAAGBQJZLCYMAAoJEPNPCXROn13ZP+MP/AvwDpcdlC6Yv59zdTcsqRqj
iSudS5b8JE2TGJdXnukPbaRmvZROOwl5xE9/xuPuLozY3TG+g4wgSMhSFp/jB4Ob
IzwjYqE0cYThiL7IckG5xIBI9r+UuYuxc4ZHZYAl0JGKszWRqdP0GDl4RKdZqR6J
/WEoCCvgzHiOMaNmpJ74fa+QY1o//0D6P/J0ShPaZFKiAerIr5IPyTulUs3dR5iV
9qdUtcMQaHrPCvvzxE4fpRrCFp8qvB15tpYUw9dABytucJRYGthVm/EFli6lZclU
bQRFxz7UugFQLRorbp9lAFvqLosocf0TJpueLWAUMxAdlPBDJI0oqZZ52UKHIvqh
n+WY86fYeoCvim0Uig6PPf61Y3F+RgNczC9Cn5+MsV/ajJgOtAm7BtY9t/qiMzoq
a0p8my0sDAnLPlNglAYxbJ0I7N9vs8gUjJqEa2aEiNt97zMWloSPAFwFBvUi1h6k
phC+V5/l1JRsvD+Ts+0doy0DgCv369uEYL6GPr9OvORhql+e8pizRmXZtW70poiS
hFpsLy5iBn20r5Tll8KPhYr4ZlTmOE+F291eNams9p1I59y/X5PAboTY++okNjY9
M14+A5mp3mmEPuXctxGpUS5iyhFNVpD0koVQBsP+BCdH14xqK1qiIKc5aQU+rmb6
Rfi0F0bYLXuJolgfE9y3
=7O3t
-----END PGP SIGNATURE-----
News for package mosquitto
