FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-16 19:33:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
6aa956fb-d97f-11e6-a071-001e67f15f5a	RabbitMQ -- Authentication vulnerability Pivotal.io reports: MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provided but the password is omitted from the connection request. Connections that use TLS with a client-provided certificate are not affected. Discovery 2016-12-06 Entry 2017-01-15 rabbitmq ge 3.0.0 lt 3.5.8 ge 3.6.0 lt 3.6.6 CVE-2016-9877 https://pivotal.io/security/cve-2016-9877 https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_6

VuXML ID

Description

6aa956fb-d97f-11e6-a071-001e67f15f5a

RabbitMQ -- Authentication vulnerability

Pivotal.io reports:

MQTT (MQ Telemetry Transport) connection authentication with a username/password pair succeeds if an existing username is provided but the password is omitted from the connection request. Connections that use TLS with a client-provided certificate are not affected.

Discovery 2016-12-06
Entry 2017-01-15
rabbitmq

ge 3.0.0 lt 3.5.8

ge 3.6.0 lt 3.6.6

CVE-2016-9877
https://pivotal.io/security/cve-2016-9877
https://github.com/rabbitmq/rabbitmq-server/releases/tag/rabbitmq_v3_6_6