Package: mosquitto / 1.4.10-3+deb9u4

Metadata

Package Version Patches format
mosquitto 1.4.10-3+deb9u4 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
enable libwrap.patch | (download)

config.mk | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 enable compile-time support for tcp-wrappers.
fix prefix.patch | (download)

config.mk | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 install to /usr instead of /usr/local
nostrip.patch | (download)

client/Makefile | 4 2 + 2 - 0 !
lib/Makefile | 2 1 + 1 - 0 !
lib/cpp/Makefile | 2 1 + 1 - 0 !
src/Makefile | 4 2 + 2 - 0 !
4 files changed, 6 insertions(+), 6 deletions(-)

 don't strip binaries on install so it can be used for the -dbg package.
disable in tree uthash.patch | (download)

src/uthash.h | 948 0 + 948 - 0 !
1 file changed, 948 deletions(-)

 use debian provided uthash.h
enable websockets.patch | (download)

config.mk | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 enable websockets support.
libdir.patch | (download)

config.mk | 2 2 + 0 - 0 !
lib/Makefile | 10 5 + 5 - 0 !
lib/cpp/Makefile | 10 5 + 5 - 0 !
3 files changed, 12 insertions(+), 10 deletions(-)

 debian specific fixes for multiarch support.
build timestamp.patch | (download)

config.mk | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 debian specific fix to make build reproducible.
hurd errno.patch | (download)

config.h | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 fix ftbfs on hurd (bug: 424571)
mosquitto 1.4.10_cve 2017 7650.patch | (download)

src/security.c | 15 15 + 0 - 0 !
src/security_default.c | 20 20 + 0 - 0 !
2 files changed, 35 insertions(+)

 fix for cve-207-7650.
allow_ipv6_bridges.patch | (download)

lib/net_mosq.c | 9 1 + 8 - 0 !
1 file changed, 1 insertion(+), 8 deletions(-)

 allow bridges to make ipv6 connections when using tls.
mosquitto 1.4.x_cve 2017 9868.patch | (download)

src/persist.c | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 fix for cve-207-9868.
mosquitto 1.4.x_cve 2017 7651.patch | (download)

lib/memory_mosq.c | 39 39 + 0 - 0 !
lib/memory_mosq.h | 4 4 + 0 - 0 !
lib/net_mosq.c | 30 30 + 0 - 0 !
src/conf.c | 8 8 + 0 - 0 !
4 files changed, 81 insertions(+)

---
mosquitto 1.4.10_cve 2017 7652.patch | (download)

src/conf.c | 108 86 + 22 - 0 !
src/loop.c | 2 1 + 1 - 0 !
src/mosquitto.c | 8 4 + 4 - 0 !
src/mosquitto_broker.h | 10 5 + 5 - 0 !
4 files changed, 96 insertions(+), 32 deletions(-)

---
add validate utf8.patch | (download)

lib/mosquitto.c | 2 2 + 0 - 0 !
lib/mosquitto.h | 4 3 + 1 - 0 !
src/read_handle_server.c | 99 99 + 0 - 0 !
3 files changed, 104 insertions(+), 1 deletion(-)

---
CVE 2017 7653.patch | (download)

src/read_handle.c | 8 8 + 0 - 0 !
src/read_handle_server.c | 8 8 + 0 - 0 !
test/broker/02-subscribe-invalid-utf8.py | 48 48 + 0 - 0 !
test/broker/03-publish-invalid-utf8.py | 49 49 + 0 - 0 !
test/broker/07-will-invalid-utf8.py | 42 42 + 0 - 0 !
test/broker/Makefile | 3 3 + 0 - 0 !
6 files changed, 158 insertions(+)

---
CVE 2017 7654.patch | (download)

src/read_handle_server.c | 24 14 + 10 - 0 !
1 file changed, 14 insertions(+), 10 deletions(-)

---
mosquitto 1.4.9 1.4.14 cve 2018 12546.patch | (download)

mosquitto.conf | 9 9 + 0 - 0 !
src/conf.c | 2 2 + 0 - 0 !
src/database.c | 26 21 + 5 - 0 !
src/mosquitto_broker.h | 6 5 + 1 - 0 !
src/persist.c | 179 121 + 58 - 0 !
src/persist.h | 2 1 + 1 - 0 !
src/read_handle.c | 4 2 + 2 - 0 !
src/read_handle_server.c | 23 2 + 21 - 0 !
src/security_default.c | 33 33 + 0 - 0 !
src/subs.c | 20 20 + 0 - 0 !
10 files changed, 216 insertions(+), 88 deletions(-)

 fix for cve-2018-12546
mosquitto 1.4.x cve 2018 12550.patch | (download)

src/security_default.c | 6 5 + 1 - 0 !
1 file changed, 5 insertions(+), 1 deletion(-)

 fix for cve-2018-12550
mosquitto 1.4.x cve 2018 12551.patch | (download)

src/security_default.c | 57 35 + 22 - 0 !
1 file changed, 35 insertions(+), 22 deletions(-)

 fix for cve-2018-12551