[mosquitto-dev] Security advisory: CVE-2018-12543

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[mosquitto-dev] Security advisory: CVE-2018-12543

From: Roger Light <roger@xxxxxxxxxx>
Date: Thu, 27 Sep 2018 12:07:53 +0100
Delivered-to: mosquitto-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/mosquitto-dev>
List-help: <mailto:mosquitto-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/mosquitto-dev>, <mailto:mosquitto-dev-request@eclipse.org?subject=unsubscribe>

Dear all,

A vulnerability exists in Mosquitto versions 1.5 to 1.5.2 inclusive
known as CVE-2018-12543.

If a message received by the broker has a topic that begins with `$`, but that
does not begin `$SYS`, an assert is triggered that should otherwise not be
accessible, causing Mosquitto to exit.

The issue is fixed in Mosquitto 1.5.3. Patches for older versions are
available at https://mosquitto.org/files/cve/2018-12543

The fix addresses the problem by reverting a commit that intended to remove
some unused checks, but also stopped part of the topic hierarchy being created.

Updated packages for most systems should be available immediately or
very shortly.

More details of the 1.5.3 release can be found on the Mosquitto
website, as well as details of the 1.5.2 release which was not
announced here due to the discovery of this vulnerability.

https://mosquitto.org/blog/

Regards,

Roger

Prev by Date: Re: [mosquitto-dev] Eclipse Mosquitto forum
Next by Date: [mosquitto-dev] Mosquito broker Architecture
Previous by thread: [mosquitto-dev] Eclipse Mosquitto forum
Next by thread: [mosquitto-dev] Mosquito broker Architecture
Index(es):
- Date
- Thread

Breadcrumbs