Provide updated RabbitMQ package
Bug #1800778 reported by
Adam Heczko
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mirantis OpenStack |
Invalid
|
Medium
|
Denis Meltsaykin |
Bug Description
Detailed bug description:
It was observed that RMQ server 3.6.1 package shipping with MOS is outdated / vulnerable.
Please provide updated RabbitMQ package.
https:/
Expected results:
MOS ships with RMQ 3.6.12 or more recent e.g. 3.6.15.
https:/
To post a comment you must log in.
In 9.2 we ship 3.6.11, all CVEs are valid only for versions prior to 3.6.9: https:/ /www.cvedetails .com/vulnerabil ity-list/ vendor_ id-15183/ product_ id-30922/ Pivotal- Software- Rabbitmq. html
This request makes no sense, there are no security fixes between 3.6.11 and 3.6.15. Please clarify why you need 3.6.15.