|
|
Subscribe / Log in / New account

Debian alert DLA-2710-2 (rabbitmq-server)



From:
              Abhijith PA <abhijith@debian.org>


To:
              debian-lts-announce@lists.debian.org


Subject:
              [SECURITY] [DLA 2710-2] rabbitmq-server regression update


Date:
              Sun, 25 Jul 2021 14:09:48 +0530


Message-ID:
              <YP0jVJkfd8Yxlsvd@disroot.org>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2710-2                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                          Abhijith PA
July 25, 2021                                 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : rabbitmq-server
Version        : 3.6.6-1+deb9u2

It was discovered that the previous upload of the package 
rabbitmq-server versioned 3.6.6-1+deb9u1 introduced a regression in 
function fmt_strip_tags. Big thanks to Christoph Haas for the 
reporting an issue and for testing the update.

For Debian 9 stretch, this problem has been fixed in version
3.6.6-1+deb9u2.

We recommend that you upgrade your rabbitmq-server packages.

For the detailed security status of rabbitmq-server please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/rabbitmq-server

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEE7xPqJqaY/zX9fJAuhj1N8u2cKO8FAmD9I1QACgkQhj1N8u2c
KO+QgA/+Mw6uRh/1YJCS2l3+QnPYSUPKZh8kAcmQ59ts9PRK5kuVFKB5YsgwyjjT
DypKyQX6aJC7O0G0SZLjyXJFAM4F2U0PKeKv3ESKgnuvBYRUxtRqTAEg2G95tp++
0/SO9OG7DMA2cuflY8ywbPaC43ugKgHL9Zgj9GHgyvECz0u0Qfc0rjqzL6F25n0F
jIeZy7MzdSY91w2EQR39XvuBXeNlj26IZvPHJbRkZbdswrrgoZVqrSBTfhCuXPGh
hoTvnRszA4Yf0YX5eu8JOuYPKA/ME9umrqugvcRwA5KAEcbpCTmKzV4XSX701zIh
2KVhd6H6m160ppQaLllmsxPaHwmnMmP7ED/SY2L+zWgtMhHI2AwP7g/hIkByIB5V
2GqsbtjLc0A/zPLF21wTieRHfXR4nZ3vUUwJ7/L7yJIfS3gWE8d+qwM1boP/tFw/
E5v152veFPXaXNVFkSyoAQH8ZHaS3E3NBDV+H5riKtvnNH12+TpR2otK+WroOz6Y
HMbYmIOlOcqlGa/GDZiGDvWOJXzF22n1jXPaTICLs4KTFfNxmng2gf5++aBGPA2E
4VJDT7N/Q7X4sPZmZmD5USh+DknG6opfrwBDAO22SXvM5b/TiMgxMhmj3BG7SyZW
cAf+8S68lQ1O6jOTSE2B4lEbbghzUgjIgvf+tXTscqUvDx87Xuc=
=QKKp
-----END PGP SIGNATURE-----
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds