changes_fields:
Architecture: all
Binary: rabbitmq-server
Changed-By: Thomas Goirand <zigo@debian.org>
Changes: |2-
rabbitmq-server (3.10.8-3) unstable; urgency=high
.
* CVE-2023-46118: Denial of Service by publishing large messages over the
HTTP API. Applied upstream patches that introduce a limit of 10MB:
- Reduce_default_HTTP_API_request_body_size_limit_to_10_MiB.patch
- Introduce_HTTP_request_body_limit_for_definition_uploads.patch
(Closes: #1056723).
Checksums-Sha1:
- name: rabbitmq-server_3.10.8-3_all.deb
sha1: 35d9195b0cca39108b308e2bbf8d29221a3d332b
size: '14930352'
- name: rabbitmq-server_3.10.8-3_arm64.buildinfo
sha1: 89fb397ce16c595c7bae4d8277e5077d43c17a0f
size: '7767'
Checksums-Sha256:
- name: rabbitmq-server_3.10.8-3_all.deb
sha256: bfa3f6aa2e31695539170a294dde0fc860c6fa7624db8f52ee162f6bd3534ba5
size: '14930352'
- name: rabbitmq-server_3.10.8-3_arm64.buildinfo
sha256: 4c2bc0bff711b5acb58a98871859027a3be12fdfcf3f6e8a13b8f1d532e2c25b
size: '7767'
Closes: '1056723'
Date: Mon, 27 Nov 2023 08:31:07 +0100
Description: |2-
rabbitmq-server - AMQP server written in Erlang
Distribution: sid
Files:
- md5sum: 92f2127fe4f72f440c55b8d2906f7a11
name: rabbitmq-server_3.10.8-3_all.deb
priority: optional
section: net
size: '14930352'
- md5sum: 8a645ea5ad44e7e59ac09e545fbadb60
name: rabbitmq-server_3.10.8-3_arm64.buildinfo
priority: optional
section: net
size: '7767'
Format: '1.8'
Maintainer: Debian OpenStack <team+openstack@tracker.debian.org>
Source: rabbitmq-server
Urgency: high
Version: 3.10.8-3
type: dpkg