Security update for mosquitto
This update for mosquitto fixes the following issues:
Security issues fixed:
- CVE-2018-12546: Fixed an issue with revoked access to topics (bsc#1125019).
- CVE-2018-12551: Fixed an issue which allowed malformed data in the password file to be treated as valid (bsc#1125020).
- CVE-2018-12550: Fixed an an issue which treats an empty ACL file wrongly (bsc#1125021).
This update was imported from the openSUSE:Leap:15.0:Update update project.
-
Submitted by
Martin Hauke (mnhauke)
Fixed bugs
bnc#1125020
VUL-1: CVE-2018-12551: mosquitto: malformed data in the password file treated as valid
bnc#1125019
VUL-1: CVE-2018-12546: mosquitto: issue with revoked access to topic
bnc#1125021
VUL-1: CVE-2018-12550: mosquitto: ACL file mistreated
