Overview

File _patchinfo of Package patchinfo.3816

<patchinfo incident="3816">
  <issue id="912460" tracker="bnc">zeromq test_security_curve hangs on powerpc</issue>
  <issue id="907584" tracker="bnc">zeromq: Can't update due to file conflict</issue>
  <issue id="931978" tracker="bnc">VUL-0: CVE-2014-9721: zeromq: protocol downgrade attack on sockets using the ZMTP v3 protocol</issue>
  <issue id="CVE-2014-9721" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>scarabeus_iv</packager>
  <description>zeromq was updated to fix one security issue and two non-security bugs.

The following vulnerabilities were fixed:

* CVE-2014-9721: zeromq protocol downgrade attack on sockets using the ZMTP v3 protocol (boo#931978)

The following bugs were fixed:

* boo#912460: avoid curve test to hang for ppc ppc64 ppc64le architectures
* boo#907584: zeromq package could not be updated due to a file conflict, split tools into a separate subpackage
</description>
  <summary>Security update for zeromq</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places