CVE-2017-1000001

FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message validation not being enabled if configured to be on.

Date published : 2017-07-13

https://github.com/fedora-infra/fedmsg/blob/0.18.2/CHANGELOG.rst