Oval Definition:
oval:org.opensuse.security:def:20177651
Revision Date
:
2022-06-30
Version
:
1
Title
:
CVE-2017-7651
Description
:
In Eclipse Mosquitto 1.4.14, a user can shutdown the Mosquitto server simply by filling the RAM memory with a lot of connections with large payload. This can be done without authentications if occur in connection phase of MQTT protocol.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
Mitre CVE-2017-7651
SUSE CVE-2017-7651
Platform(s)
:
openSUSE Tumbleweed
Product(s)
:
Definition Synopsis
openSUSE Tumbleweed is installed
AND
Package Information
libmosquitto1-2.0.11-1.2 is installed
OR
libmosquittopp1-2.0.11-1.2 is installed
OR
mosquitto-2.0.11-1.2 is installed
OR
mosquitto-clients-2.0.11-1.2 is installed
OR
mosquitto-devel-2.0.11-1.2 is installed
BACK