-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 10 Jun 2026 16:29:23 +0200 Source: librabbitmq Binary: amqp-tools amqp-tools-dbgsym librabbitmq-dev librabbitmq4 librabbitmq4-dbgsym Architecture: riscv64 Version: 0.15.0-1+deb13u1 Distribution: trixie-security Urgency: medium Maintainer: riscv64 Build Daemon (rv-manda-03) Changed-By: Florian Ernst Description: amqp-tools - Command-line utilities for interacting with AMQP servers librabbitmq-dev - AMQP client library written in C - Dev Files librabbitmq4 - AMQP client library written in C Changes: librabbitmq (0.15.0-1+deb13u1) trixie-security; urgency=medium . * [b57bf8d] d/patches/CVE-2026-44235.patch: added from upstream. Fix out-of-bounds read via undersized frames in amqp_handle_input (GHSA-9mmv-r8g3-qp46, CVE-2026-44235) * [890d6c5] d/patches/CVE-2026-44236.patch: added from upstream. Fix client crash when server negotiates frame_max below the AMQP protocol minimum (GHSA-jh48-qjf5-fx5v, CVE-2026-44236) Checksums-Sha1: ead1a2983e1627c9e0d575dbf7d78e87309108c9 66248 amqp-tools-dbgsym_0.15.0-1+deb13u1_riscv64.deb edc892af3a95be7f38d9f070bbe4ebafd7e5b3d3 37472 amqp-tools_0.15.0-1+deb13u1_riscv64.deb da096074cecb0a3d433dc7694f60741488963cb6 150464 librabbitmq-dev_0.15.0-1+deb13u1_riscv64.deb 64744f69d5d6717260c4ca59ed86cdd6a5e5b047 142800 librabbitmq4-dbgsym_0.15.0-1+deb13u1_riscv64.deb 6e0f8bc38456fefe463c42b7abe2f91cb5fa53f7 46216 librabbitmq4_0.15.0-1+deb13u1_riscv64.deb 58c2b3268365c01a70517e574a00931f095893df 8250 librabbitmq_0.15.0-1+deb13u1_riscv64-buildd.buildinfo Checksums-Sha256: 1e86a2059700ba1d1e03ead6101671a1b17402f80ee51a301f4090da9b35495c 66248 amqp-tools-dbgsym_0.15.0-1+deb13u1_riscv64.deb 8f83201176b4a58cd5b75f9fdd61047d418ebc43bd2273def1f72abd01adb6dc 37472 amqp-tools_0.15.0-1+deb13u1_riscv64.deb d35b89ddd5a1d91da33e713e97ffdfd944edc64a7864bf87e5aced999c6d4c55 150464 librabbitmq-dev_0.15.0-1+deb13u1_riscv64.deb 260ad1e1f7b03ec20dd296f4686d7d9b868e83b0a7111a7a2b67fffe1c826922 142800 librabbitmq4-dbgsym_0.15.0-1+deb13u1_riscv64.deb 989f3b6b79d9d0ebb6552f1ab290da1bfa576b7eafdd140d6bea1ba13a3501d0 46216 librabbitmq4_0.15.0-1+deb13u1_riscv64.deb b4d8b46f6550237e08e92245162f5fbc5c93060f032e289b991395e07244d4ee 8250 librabbitmq_0.15.0-1+deb13u1_riscv64-buildd.buildinfo Files: e45667604b12f4038fa5d5b8c0e567fa 66248 debug optional amqp-tools-dbgsym_0.15.0-1+deb13u1_riscv64.deb 81d9d81fe0d904d1c60b7bdf2fb31015 37472 net optional amqp-tools_0.15.0-1+deb13u1_riscv64.deb e0e1eafcc8c4e2c9909486e1d17b467c 150464 libdevel optional librabbitmq-dev_0.15.0-1+deb13u1_riscv64.deb b20d007e9a4ae80eb31d9120eade27f5 142800 debug optional librabbitmq4-dbgsym_0.15.0-1+deb13u1_riscv64.deb e35eb61de0d40e6e31d467f5852420b4 46216 libs optional librabbitmq4_0.15.0-1+deb13u1_riscv64.deb 6142a7a28bf6c62b33af5a2ec0c850f4 8250 libs optional librabbitmq_0.15.0-1+deb13u1_riscv64-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEXZ9jHPkg/vETgMJZlJNduPxUf2oFAmoqy6wACgkQlJNduPxU f2qoXRAAtI04bvxFM2bXUS9mvlEQmtMTcCTnUh1Df4gUbx2DON2rqOV/hbnqMU/P fqd7MnRnooSDGNQ12TZJZA43qLTGRCRTNprzE50sTidhvgviJ8yZUASlrlfp36Qk RtknBYuIrtwf+Tnuxe3YzK8VZnEkbehwIxFfPu79yldEOj1D4+r8zUuVMaOuT3Vq 4GMgu1h/ZKzilFk1cjl/++75QoaFtXG13RuhhnWVtL8kQyZk9AeX8TqCVbxkMyln vl4hcwHEGa58jyS85qrQR719qcSXIRd/+3urxuQ6g25TC6zkacUqA8lvVbvnhV2s 9QSQfsYxETpIUPIUsRRtdanmKDAPzU3ureq8Dagoc5dppBcTnHqVFkiDbJ44Vjry gh/23mNcU4LHXwLxUv0vYLmXbbdRQSwiCMx80xy9AwB7BZoDw4Xe2Jc3ubQV9/ex CAfDXxIKsfxTHkKLQXDxQldkc3Bleh5xFGWNhr12jR2kfIjVU/cs8BWSJ6aa2Ra6 YymITYS/dY5VZhcHse/hYIQyidlbLNSFkEjAUbAD6GCIpf5WxhRKt23iLYdft5GJ sf2CAi7ARmPvQs11E1KhsrJM1rtZVlF5mEawXoH6AzB2/NSI3e0dLmQ/dOHqCQ2k hSC671n8CjsQIJ4mXhjJ9HjG+PAJRAeAsjikFptw/wvP+YzJJ30= =PK1v -----END PGP SIGNATURE-----