Embedded RabbitMQ v1.2.2 Release Notes

Release Date: 2017-11-25 // about 5 years ago
  • 🛠 Fixed CVE-2015-4035

    It was discovered that the xzgrep's xz helper script did not properly sanitize certain file names. A local attacker could use this flaw to inject and execute arbitrary commands by tricking a user into running the xzgrep script on a file with a specially crafted file name.

    Commits:

    Contributors: