CVE-2023-3592

Опубликовано: 02 окт. 2023

Источник: ubuntu

Приоритет: medium

CVSS3: 5.8

Описание

In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	not-affected	2.0.18-1
esm-apps/bionic	not-affected	code-not-present
esm-apps/focal	released	1.6.9-1ubuntu0.1~esm1
esm-apps/jammy	released	2.0.11-1ubuntu1.1
esm-apps/noble	not-affected	2.0.18-1
esm-apps/xenial	not-affected	code-not-present
esm-infra-legacy/trusty	not-affected	code-not-present
focal	ignored	end of standard support, was needed
jammy	released	2.0.11-1ubuntu1.1

Показывать по

5.8 Medium

CVSS3

CVE-2023-3592

CVSS3: 7.5

redhat

больше 2 лет назад

In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.

CVE-2023-3592

CVSS3: 5.8

nvd

около 2 лет назад

In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.

CVE-2023-3592

CVSS3: 5.8

debian

около 2 лет назад

In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 ...

GHSA-p7q8-377q-px25

CVSS3: 5.8

github

около 2 лет назад

In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will message that contains invalid property types.

BDU:2024-04213

CVSS3: 7.5

fstec

около 2 лет назад

Уязвимость компонента CONNECT v5 брокера сообщений Eclipse Mosquitto, позволяющая нарушителю вызвать отказ в обслуживании

5.8 Medium

CVSS3