Information on source package zeromq3

Available versions

ReleaseVersion
jessie4.0.5+dfsg-2+deb8u4
stretch4.2.1-4+deb9u4
buster4.3.1-4+deb10u3
buster (security)4.3.1-4+deb10u2
bullseye4.3.4-1+deb11u1
bookworm4.3.4-6
trixie4.3.5-1
sid4.3.5-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-20237fixedvulnerable (no DSA)fixedfixedfixedfixedfixedAn uncontrolled resource consumption (memory leak) flaw was found in Z ...
CVE-2021-20236vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedfixedA flaw was found in the ZeroMQ server in versions before 4.3.3. This f ...

Resolved issues

BugDescription
CVE-2021-20235There's a flaw in the zeromq server in versions before 4.3.3 in src/de ...
CVE-2021-20234An uncontrolled resource consumption (memory leak) flaw was found in t ...
CVE-2020-36400ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, ...
CVE-2020-15166In ZeroMQ before version 4.3.3, there is a denial-of-service vulnerabi ...
CVE-2019-13132In ZeroMQ libzmq before 4.0.9, 4.1.x before 4.1.7, and 4.2.x before 4. ...
CVE-2019-6250A pointer overflow, with code execution, was discovered in ZeroMQ libz ...
CVE-2014-9721libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers to ...
CVE-2014-7203libzmq (aka ZeroMQ/C++) 4.0.x before 4.0.5 does not ensure that nonces ...
CVE-2014-7202stream_engine.cpp in libzmq (aka ZeroMQ/C++)) 4.0.5 before 4.0.5 allow ...

Security announcements

DSA / DLADescription
ELA-1184-1zeromq3 - security update
ELA-388-1zeromq3 - security update
DLA-2588-1zeromq3 - security update
DLA-2443-1zeromq3 - security update
ELA-313-1zeromq3 - security update
DSA-4761-1zeromq3 - security update
DSA-4477-1zeromq3 - security update
DLA-1849-1zeromq3 - security update
DSA-4368-1zeromq3 - security update
DSA-3255-1zeromq3 - security update
Search for package or bug name: Reporting problems