Univention Bugzilla – Bug 52349
zeromq3: Multiple issues (4.4)
Last modified: 2020-11-18 16:43:57 CET
New Debian zeromq3 4.2.1-4+deb9u3 fixes: This update addresses the following issue: * unauthenticated clients causing denial-of-service (CVE-2020-15166)
--- mirror/ftp/4.4/unmaintained/4.4-2/source/zeromq3_4.2.1-4+deb9u2.dsc +++ apt/ucs_4.4-0-errata4.4-6/source/zeromq3_4.2.1-4+deb9u3.dsc @@ -1,3 +1,9 @@ +4.2.1-4+deb9u3 [Tue, 10 Nov 2020 19:39:03 +0530] Utkarsh Gupta <utkarsh@debian.org>: + + * Non-maintainer upload by the LTS team. + * zeromq connects peer before handshake is completed. + (CVE-2020-15166) + 4.2.1-4+deb9u2 [Sat, 06 Jul 2019 14:19:32 +0000] Laszlo Boszormenyi (GCS) <gcs@debian.org>: [ Luca Boccassi <bluca@debian.org> ] <http://10.200.17.11/4.4-6/#8175432724601962694>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-6] 6d981dacd8 Bug #52349: zeromq3 4.2.1-4+deb9u3 doc/errata/staging/zeromq3.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) [4.4-6] 4194e909b0 Bug #52349: zeromq3 4.2.1-4+deb9u3 doc/errata/staging/zeromq3.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x811>