-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 10 Jun 2026 16:29:23 +0200 Source: librabbitmq Binary: amqp-tools amqp-tools-dbgsym librabbitmq-dev librabbitmq4 librabbitmq4-dbgsym Architecture: i386 Version: 0.15.0-1+deb13u1 Distribution: trixie-security Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-02) Changed-By: Florian Ernst Description: amqp-tools - Command-line utilities for interacting with AMQP servers librabbitmq-dev - AMQP client library written in C - Dev Files librabbitmq4 - AMQP client library written in C Changes: librabbitmq (0.15.0-1+deb13u1) trixie-security; urgency=medium . * [b57bf8d] d/patches/CVE-2026-44235.patch: added from upstream. Fix out-of-bounds read via undersized frames in amqp_handle_input (GHSA-9mmv-r8g3-qp46, CVE-2026-44235) * [890d6c5] d/patches/CVE-2026-44236.patch: added from upstream. Fix client crash when server negotiates frame_max below the AMQP protocol minimum (GHSA-jh48-qjf5-fx5v, CVE-2026-44236) Checksums-Sha1: 2422d84507bffd2248d8eed9efe696ec650a0987 60128 amqp-tools-dbgsym_0.15.0-1+deb13u1_i386.deb 3372e599096693d8e528c39b77365a822891b700 37380 amqp-tools_0.15.0-1+deb13u1_i386.deb e26bc2c7b4ba0b7ea700875e4087fed36f1078ad 83020 librabbitmq-dev_0.15.0-1+deb13u1_i386.deb ba7be4b296b4624fc5258e03b24ea76a2adb87cd 129420 librabbitmq4-dbgsym_0.15.0-1+deb13u1_i386.deb 9e2d70ee63aaec5bd40178d0763dd05b465b1af7 45776 librabbitmq4_0.15.0-1+deb13u1_i386.deb daca18eae62226850193018e8596d45e7bea4c41 8177 librabbitmq_0.15.0-1+deb13u1_i386-buildd.buildinfo Checksums-Sha256: 2d9d24f84b1592be18fe275dfc9d5b28d7ba02c49ae366f9eb56bb56cbc49c91 60128 amqp-tools-dbgsym_0.15.0-1+deb13u1_i386.deb 36028b4a372ac9c9709f7ba833cdcfc3d359e4d9b4ed197bd4b537d150726507 37380 amqp-tools_0.15.0-1+deb13u1_i386.deb db31b7129395b935943c1c6eb419d9e30616e15480c2de1e051367dc35918582 83020 librabbitmq-dev_0.15.0-1+deb13u1_i386.deb e58c5a75cdf9dcb9d5576df3820d33e46f270814309440329a340a42e4017f2f 129420 librabbitmq4-dbgsym_0.15.0-1+deb13u1_i386.deb d306b67356381bb463d4d6581c30044cb83a4059ee50b3e7ed9c5f3d91416fd2 45776 librabbitmq4_0.15.0-1+deb13u1_i386.deb e38c9928cfa575efbb416512549f9d2cbbdc651eb44bf27a12de390588369381 8177 librabbitmq_0.15.0-1+deb13u1_i386-buildd.buildinfo Files: 33650dc8e3dc1736ee04510afaca32ee 60128 debug optional amqp-tools-dbgsym_0.15.0-1+deb13u1_i386.deb c633788da8545c6ec40ce368f57c2d72 37380 net optional amqp-tools_0.15.0-1+deb13u1_i386.deb 740d8b21283b385c0a89100f806747e2 83020 libdevel optional librabbitmq-dev_0.15.0-1+deb13u1_i386.deb 77bbfb0498275265fe1af44dc2b38c8e 129420 debug optional librabbitmq4-dbgsym_0.15.0-1+deb13u1_i386.deb 70cae8cf39648322ee8b8388ffbc95f6 45776 libs optional librabbitmq4_0.15.0-1+deb13u1_i386.deb 97d212a0eb3c779f7758b8a1374c33cb 8177 libs optional librabbitmq_0.15.0-1+deb13u1_i386-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE+i/sCsF3puL4e7qIGNGWmfrqILEFAmoqyhoACgkQGNGWmfrq ILGCHBAAs89667PFRRJDNKVaAOyN+Ohoy15IW8Ct0rneWDuS0eIgVWnuPocA9mx3 OPQw37G7T1xv8kwxxrB/0e/xtsFn83J2gdo5u7GuQ/pP86e2k+jTkUxPmCExeGy7 N7WCTilPym5U/odc/DdZwzTq2jc9CcxaKCT9TvXBz6PhwI9joKcf8D/Y8BSQ+41a qjEEzcMAACK5aWNFwpkZtOlAPEnrgcvRdVaAxjXR1A4CmrPAXdNzQ+yy/ENXC+Le ZucMx9KiZjcaWoWfZB4xF30gsGdfI3S1RQK7ozZA/RMQMR9gd7HKvww5jYsXaype i/Gjfl+p1fxkCC+NUdFyZH+xLVCJz0i1UxhRrt135BQO0H5J0SRMx+UkNAT3RLVS ZHZIkjibnld2A+4Cs+XUj+bTxe/YJkgIO1dYqPAgTMMXM1OETVonrqxW+DLfyJzo vNX5Lxux/lZr1uqiqn7eMK+ae6shO9qQi+POvGRAF3lNL3/02kWIWqz2ggWgvZ6V uukk5Qc/GWa+yKzEzqK3/x+7SOlg5TOEuvWhmWTIlL0o8OvyEIkwwzSHOnVTtFjb 2vxB+saxJzRuNk2UJQKMwi/4g9nB5EFO+KQ567QG2bB7vXi1/7wF30+PIxWLjt8g isexjJdQgu6ay1xOdSlojhRT47PrFymGN489GSAA6FPmPg2lqLw= =HFd+ -----END PGP SIGNATURE-----