rabbit_common
4.2.1
Modules shared by rabbitmq-server and rabbitmq-erlang-client
Current section
4 Advisories
Jump to
Current section
4 Advisories
RabbitMQ vulnerable to Denial of Service by publishing large messages over the HTTP API
Affected Versions
RabbitMQ has predictable credential obfuscation seed value used in Shovel and Federation plugins
Affected Versions
References
- https://github.com/rabbitmq/rabbitmq-server
- https://github.com/rabbitmq/rabbitmq-server/commit/c22e1cb20e656d211e025c417d1fc75a9067b717
- https://github.com/rabbitmq/rabbitmq-server/pull/4841
- https://github.com/rabbitmq/rabbitmq-server/security/advisories/GHSA-v9gv-xp36-jgj8
- https://nvd.nist.gov/vuln/detail/CVE-2022-31008
RabbitMQ HTTP API's queue deletion endpoint does not verify that the user has a required permission
Affected Versions
Cross-site Scripting in RabbitMQ
Affected Versions
Checksum
Dependency Config
mix.exs
rebar.config
Gleam
erlang.mk
Package Details
this version
447 003
yesterday
7 689
last 7 days
45 249
all time
17 737 783