qpid-broker-core is vulnerable to denial of service (DoS) attacks. The vulnerability exists as the message store did not handle messages properly, allowing malformed messages to crash the broker instance.
mail-archives.us.apache.org/mod_mbox/www-announce/201903.mbox/%3CCAP3WMuR-CCdbACWo7QVPTJ04+twGLGzg4SVBakUDD+NkNTKoog@mail.gmail.com%3E
www.securityfocus.com/bid/107215
github.com/apache/qpid-broker-j/commit/adb2a34306d67559ee81db155826dc67a02cc85e
github.com/apache/qpid-broker-j/pull/21
lists.apache.org/thread.html/ac79d48de37d42b64da50384dbe9c8a329c5f553dd12ef7c28a832de@%3Cusers.qpid.apache.org%3E