CVE-2021-34434

Debian Bug report logs - #1001028 mosquitto: CVE-2021-41039: Possible DoS Attack caused by unlimited number of "user properties" Package: src:mosquitto; Maintainer for src:mosquitto is Roger A Light <roger@atchooorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 2 Dec 2021 21:21:01 UTC Severity ...

Debian Bug report logs - #993400 mosquitto: CVE-2021-34434 Package: src:mosquitto; Maintainer for src:mosquitto is Roger A Light <roger@atchooorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 31 Aug 2021 19:33:01 UTC Severity: important Tags: security, upstream Found in version mosquitto/201 ...

Several security vulnerabilities have been discovered in mosquitto, a MQTT compatible message broker, which may be abused for a denial of service attack CVE-2021-34434 In Eclipse Mosquitto when using the dynamic security plugin, if the ability for a client to make subscriptions on a topic is revoked when a durable client is offline, t ...

In Eclipse Mosquitto versions 20 to 2011, when using the dynamic security plugin, if the ability for a client to make subscriptions on a topic is revoked when a durable client is offline, then existing subscriptions for that client are not revoked ...