[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-FU-2024:2078-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T02:55:30.529Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":24,"duplicates":25,"related":26,"reserved_at":9,"published_at":32,"modified_at":33,"state":9,"summary":34,"references_raw":36,"kevs":106,"epss":9,"epss_history":107,"metrics":108,"affected":109},"SUSE-FU-2024:2078-1","Feature update for rabbitmq-server313, erlang26, elixir115\n\nThis update for rabbitmq-server313, erlang26, elixir115 fixes the following issues:\n\nrabbitmq-server was implemented with a parallel versioned RPM package at version 3.13.1 (jsc#PED-8414):\n    \n- Security issues fixed:\n\n  * CVE-2021-22116: Fixed improper input validation that may lead to Denial of Sercice (DoS) attacks (bsc#1186203)\n  * CVE-2021-32718, CVE-2021-32719: Fixed potential for JavaScript code execution in the management UI \n    (bsc#1187818, bsc#1187819)\n  * CVE-2022-31008: Fixed encryption key used to encrypt the URI was seeded with a predictable secret (bsc#1205267)\n  * CVE-2023-46118: Fixed HTTP API vulnerability for denial of service (DoS) attacks with very large messages\n    (bsc#1216582)\n    \n- Other bugs fixed:\n\n  * Fixed RabbitMQ maintenance status issue (bsc#1199431)\n  * Provide user/group for RPM 4.19 (bsc#1219532)\n  * Fixed `rabbitmqctl` command for `add_user` (bsc#1222591)\n  * Added hardening to systemd service(s) (bsc#1181400)\n  * Use /run instead of deprecated /var/run in tmpfiles.conf (bsc#1185075)\n\n- For the full list of upstream changes of this update between version 3.8.11 and 3.13.1 please consult:\n  \n  * https://www.rabbitmq.com/release-information\n    \nerlang26:\n\n- Provide RPM package as it's a dependency of rabbitmq-server313 (jsc#PED-8414)\n\nelixir115:\n    \n- Provide RPM package as needed in some cases by rabbitmq-server313 (jsc#PED-8414)\n\n",null,[],[],[],[14,16,18,20,22],{"_key":15},"CVE-2021-22116",{"_key":17},"CVE-2021-32718",{"_key":19},"CVE-2021-32719",{"_key":21},"CVE-2022-31008",{"_key":23},"CVE-2023-46118",[],[],[27,28,29,30,31],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},"2024-06-19T03:36:36Z","2026-02-04T04:37:27.010780Z",{"cisa_kev":35,"cisa_ransomware":35,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[37,44,49,53,57,61,65,69,73,77,81,85,90,94,98,102],{"url":38,"sources":39,"tags":42},"https://www.suse.com/support/update/announcement/-2024-2078/suse-fu-20242078-1/",[40,41],"osv_suse","osv_opensuse",[43],"Advisory",{"url":45,"sources":46,"tags":47},"https://bugzilla.suse.com/1181400",[40,41],[48],"REPORT",{"url":50,"sources":51,"tags":52},"https://bugzilla.suse.com/1185075",[40,41],[48],{"url":54,"sources":55,"tags":56},"https://bugzilla.suse.com/1186203",[40,41],[48],{"url":58,"sources":59,"tags":60},"https://bugzilla.suse.com/1187818",[40,41],[48],{"url":62,"sources":63,"tags":64},"https://bugzilla.suse.com/1187819",[40,41],[48],{"url":66,"sources":67,"tags":68},"https://bugzilla.suse.com/1199431",[40,41],[48],{"url":70,"sources":71,"tags":72},"https://bugzilla.suse.com/1205267",[40,41],[48],{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1216582",[40,41],[48],{"url":78,"sources":79,"tags":80},"https://bugzilla.suse.com/1219532",[40,41],[48],{"url":82,"sources":83,"tags":84},"https://bugzilla.suse.com/1222591",[40,41],[48],{"url":86,"sources":87,"tags":88},"https://www.suse.com/security/cve/CVE-2021-22116",[40,41],[89],"WEB",{"url":91,"sources":92,"tags":93},"https://www.suse.com/security/cve/CVE-2021-32718",[40,41],[89],{"url":95,"sources":96,"tags":97},"https://www.suse.com/security/cve/CVE-2021-32719",[40,41],[89],{"url":99,"sources":100,"tags":101},"https://www.suse.com/security/cve/CVE-2022-31008",[40,41],[89],{"url":103,"sources":104,"tags":105},"https://www.suse.com/security/cve/CVE-2023-46118",[40,41],[89],[],[],[],[110,123,130,137,143,147],{"ecosystem":111,"name":112,"vendor":113,"product":114,"cpe_part":9,"purl_type":115,"purl_namespace":113,"purl_name":114,"source":9,"versions":116},"openSUSE","elixir115","opensuse","elixir115&distro=openSUSE Leap 15.6","rpm",[117],{"version":118,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":121,"version_end_type":122,"fixed_in":9},"lt1_15_7_150300_7_5_1",true,"ecosystem","1.15.7-150300.7.5.1","excluding",{"ecosystem":111,"name":124,"vendor":113,"product":125,"cpe_part":9,"purl_type":115,"purl_namespace":113,"purl_name":125,"source":9,"versions":126},"erlang26","erlang26&distro=openSUSE Leap 15.6",[127],{"version":128,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":129,"version_end_type":122,"fixed_in":9},"lt26_2_1_150300_7_5_1","26.2.1-150300.7.5.1",{"ecosystem":111,"name":131,"vendor":113,"product":132,"cpe_part":9,"purl_type":115,"purl_namespace":113,"purl_name":132,"source":9,"versions":133},"rabbitmq-server313","rabbitmq-server313&distro=openSUSE Leap 15.6",[134],{"version":135,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":136,"version_end_type":122,"fixed_in":9},"lt3_13_1_150600_13_5_3","3.13.1-150600.13.5.3",{"ecosystem":138,"name":112,"vendor":139,"product":140,"cpe_part":9,"purl_type":115,"purl_namespace":139,"purl_name":140,"source":9,"versions":141},"SUSE Linux Enterprise","suse","elixir115&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6",[142],{"version":118,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":121,"version_end_type":122,"fixed_in":9},{"ecosystem":138,"name":124,"vendor":139,"product":144,"cpe_part":9,"purl_type":115,"purl_namespace":139,"purl_name":144,"source":9,"versions":145},"erlang26&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6",[146],{"version":128,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":129,"version_end_type":122,"fixed_in":9},{"ecosystem":138,"name":131,"vendor":139,"product":148,"cpe_part":9,"purl_type":115,"purl_namespace":139,"purl_name":148,"source":9,"versions":149},"rabbitmq-server313&distro=SUSE Linux Enterprise Module for Server Applications 15 SP6",[150],{"version":135,"is_range":119,"range_type":120,"version_start":9,"version_start_type":9,"version_end":136,"version_end_type":122,"fixed_in":9}]