CVE-2017-7655

Published: 3/27/2019 Last updated: 8/5/2024 Reserved: 4/11/2017

In Eclipse Mosquitto version from 1.0 to 1.4.15, a Null Dereference vulnerability was found in the Mosquitto library which could lead to crashes for those applications using the library.

CNA assigner: eclipse (e51fbebd-6053-4e49-959f-1b94eeb69a2c) Requested by: n/a

Opam packages affected (1)

conf-libmosquitto

Products affected (1)

Product	Vendor	Version
Eclipse Mosquitto	The Eclipse Foundation	<= 5.0.1

References (6)

https://bugs.eclipse.org/bugs/show_bug.cgi?id=533775
https://lists.debian.org/debian-lts-announce/2019/10/msg00035.html
https://lists.debian.org/debian-lts-announce/2021/10/msg00022.html
https://bugs.eclipse.org/bugs/show_bug.cgi?id=533775
https://lists.debian.org/debian-lts-announce/2019/10/msg00035.html
https://lists.debian.org/debian-lts-announce/2021/10/msg00022.html