Описание
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-23913
- https://github.com/github/codeql-java-CVE-coverage/issues/1061
- https://github.com/apache/activemq-artemis/pull/3862
- https://github.com/apache/activemq-artemis/pull/3862/commits/1f92368240229b8f5db92a92a72c703faf83e9b7
- https://github.com/apache/activemq-artemis/pull/3871
- https://github.com/apache/activemq-artemis/pull/3871/commits/153d2e9a979aead8dff95fbc91d659ecc7d0fb82
- https://issues.apache.org/jira/browse/ARTEMIS-3593
- https://lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2
- https://security.netapp.com/advisory/ntap-20220303-0003
Пакеты
Наименование
org.apache.activemq:artemis-core-client
maven
Затронутые версииВерсия исправления
< 2.19.1
2.19.1
Связанные уязвимости
CVSS3: 7.5
redhat
около 4 лет назад
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.
CVSS3: 7.5
nvd
около 4 лет назад
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.