VYPR
Unrated severityNVD Advisory· Published Sep 18, 2019· Updated Aug 4, 2024

CVE-2019-11778

CVE-2019-11778

Description

If an MQTT v5 client connects to Eclipse Mosquitto versions 1.6.0 to 1.6.4 inclusive, sets a last will and testament, sets a will delay interval, sets a session expiry interval, and the will delay interval is set longer than the session expiry interval, then a use after free error occurs, which has the potential to cause a crash in some situations.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Eclipse/Mosquittollm-fuzzy2 versions
    1.6.0 - 1.6.4+ 1 more
    • (no CPE)range: 1.6.0 - 1.6.4
    • (no CPE)range: 1.6.0 to 1.6.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.