projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6da327a) | patch
mosquitto: add upstream security fix
authorPeter Korsgaard <peter@korsgaard.com>
Wed, 28 Jun 2017 10:44:20 +0000 (12:44 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Wed, 28 Jun 2017 21:25:02 +0000 (23:25 +0200)
commite51d69a3b11ae971d2aa65d6d0a6f0bb7730e0ab
tree01f6d1ba69e0a87067df9bfa86b0663dc93b6fb1tree
parent6da327adb21d1cb0f1962b2cadae256ba217972acommit | diff
mosquitto: add upstream security fix

Fixes CVE-2017-9868: In Mosquitto through 1.4.12, mosquitto.db (aka the
persistence file) is world readable, which allows local users to obtain
sensitive MQTT topic information.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/mosquitto/mosquitto.hash diff | blob | history
package/mosquitto/mosquitto.mk diff | blob | history