VYPR

rpm package

suse/qpid-proton&distro=SUSE Linux Enterprise Module for Package Hub 15 SP5

pkg:rpm/suse/qpid-proton&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5

Vulnerabilities (1)

  • CVE-2019-0223Apr 23, 2019
    affected < 0.38.0-150000.6.3.1fixed 0.38.0-150000.6.3.1

    While investigating bug PROTON-2014, we discovered that under some circumstances Apache Qpid Proton versions 0.9 to 0.27.0 (C library and its language bindings) can connect to a peer anonymously using TLS *even when configured to verify the peer certificate* while used with OpenS