Rabbitmq Cproject Rabbitmq C
By the Year
In 2024 there have been 0 vulnerabilities in Rabbitmq Cproject Rabbitmq C . Last year Rabbitmq C had 1 security vulnerability published. Right now, Rabbitmq C is on track to have less security vulnerabilities in 2024 than it did last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 1 | 5.50 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 1 | 9.80 |
2018 | 0 | 0.00 |
It may take a day or so for new Rabbitmq C vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Rabbitmq Cproject Rabbitmq C Security Vulnerabilities
An issue was discovered in the C AMQP client library (aka rabbitmq-c) through 0.13.0 for RabbitMQ
CVE-2023-35789
5.5 - Medium
- June 16, 2023
An issue was discovered in the C AMQP client library (aka rabbitmq-c) through 0.13.0 for RabbitMQ. Credentials can only be entered on the command line (e.g., for amqp-publish or amqp-consume) and are thus visible to local attackers by listing a process and its arguments.
Insufficiently Protected Credentials
An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0
CVE-2019-18609
9.8 - Critical
- December 01, 2019
An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTION_STATE_HEADER. A rogue server could return a malicious frame header that leads to a smaller target_size value than needed. This condition is then carried on to a memcpy function that copies too much data into a heap buffer.
Memory Corruption
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Fedora Project Fedora or by Rabbitmq Cproject? Click the Watch button to subscribe.