Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[mosquitto-dev] Security advisory : version 2.0.10

Dear all,

Version 2.0.10 has been released as a security and bugfix update.

If an authenticated client connected with MQTT v5 sent a malformed
CONNACK message to the broker a NULL pointer dereference occurred,
most likely resulting in a segfault.

Affects versions 2.0.0 to 2.0.9 inclusive.

The changelog and security page will be updated with the CVE number
when it is assigned.

All Mosquitto provided binaries are already updated to 2.0.10.



Back to the top