Описание
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | qpid-cpp | Affected | ||
| Red Hat Enterprise MRG 1 | qpid-cpp | Will not fix | ||
| MRG for RHEL-5 v. 2 | cumin-messaging | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | mrg-release | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | python-qpid | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-cpp-mrg | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-java | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-jca | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-qmf | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-tests | Fixed | RHSA-2013:0561 | 06.03.2013 |
Показывать по
Дополнительная информация
Статус:
EPSS
5 Medium
CVSS2
Связанные уязвимости
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote at ...
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the client-properties map in a connection.start-ok message.
EPSS
5 Medium
CVSS2