Описание
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which triggers an out-of-bounds read.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | qpid-cpp | Affected | ||
| Red Hat Enterprise MRG 1 | qpid-cpp | Will not fix | ||
| MRG for RHEL-5 v. 2 | cumin-messaging | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | mrg-release | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | python-qpid | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-cpp-mrg | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-java | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-jca | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-qmf | Fixed | RHSA-2013:0561 | 06.03.2013 |
| MRG for RHEL-5 v. 2 | qpid-tests | Fixed | RHSA-2013:0561 | 06.03.2013 |
Показывать по
Дополнительная информация
Статус:
EPSS
5 Medium
CVSS2
Связанные уязвимости
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which triggers an out-of-bounds read.
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which triggers an out-of-bounds read.
Integer overflow in the qpid::framing::Buffer::checkAvailable function ...
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which triggers an out-of-bounds read.
EPSS
5 Medium
CVSS2