Описание
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server without sending data causes the EPOLLOUT event to be added, which results excessive CPU consumption. This could be used by a malicious actor to perform denial of service type attack. This issue is fixed in 2.0.6
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 2.0.18-1 |
| esm-apps/bionic | not-affected | code-not-present |
| esm-apps/focal | not-affected | code-not-present |
| esm-apps/jammy | not-affected | 2.0.11-1ubuntu1 |
| esm-apps/xenial | not-affected | code-not-present |
| esm-infra-legacy/trusty | not-affected | code-not-present |
| focal | not-affected | code-not-present |
| jammy | not-affected | 2.0.11-1ubuntu1 |
| lunar | not-affected | 2.0.11-1.2 |
Показывать по
7.5 High
CVSS3
Связанные уязвимости
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server without sending data causes the EPOLLOUT event to be added, which results excessive CPU consumption. This could be used by a malicious actor to perform denial of service type attack. This issue is fixed in 2.0.6
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server without sending data causes the EPOLLOUT event to be added, which results excessive CPU consumption. This could be used by a malicious actor to perform denial of service type attack. This issue is fixed in 2.0.6
In Eclipse Mosquito before and including 2.0.5, establishing a connect ...
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server without sending data causes the EPOLLOUT event to be added, which results excessive CPU consumption. This could be used by a malicious actor to perform denial of service type attack. This issue is fixed in 2.0.6
7.5 High
CVSS3