qpid is vulnerable to denial of service. It was found that the AMQP type decoder in qpidd allowed arbitrary data types in certain messages. A remote attacker could use this flaw to send a message containing an excessively large amount of data, causing qpidd to allocate a large amount of memory and subsequently crash.
rhn.redhat.com/errata/RHSA-2013-0561.html
rhn.redhat.com/errata/RHSA-2013-0562.html
secunia.com/advisories/52516
svn.apache.org/viewvc?view=revision&revision=1453031
access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_MRG/2/html/Technical_Notes/RHSA-2013-0561.html
access.redhat.com/security/updates/classification/#moderate
bugzilla.redhat.com/show_bug.cgi?id=678612
bugzilla.redhat.com/show_bug.cgi?id=710787
bugzilla.redhat.com/show_bug.cgi?id=720714
bugzilla.redhat.com/show_bug.cgi?id=737685
bugzilla.redhat.com/show_bug.cgi?id=740485
bugzilla.redhat.com/show_bug.cgi?id=754990
bugzilla.redhat.com/show_bug.cgi?id=773719
bugzilla.redhat.com/show_bug.cgi?id=781496
bugzilla.redhat.com/show_bug.cgi?id=782806
bugzilla.redhat.com/show_bug.cgi?id=783215
bugzilla.redhat.com/show_bug.cgi?id=784957
bugzilla.redhat.com/show_bug.cgi?id=786555
bugzilla.redhat.com/show_bug.cgi?id=790004
bugzilla.redhat.com/show_bug.cgi?id=800912
bugzilla.redhat.com/show_bug.cgi?id=801605
bugzilla.redhat.com/show_bug.cgi?id=804752
bugzilla.redhat.com/show_bug.cgi?id=813742
bugzilla.redhat.com/show_bug.cgi?id=814356
bugzilla.redhat.com/show_bug.cgi?id=834256
bugzilla.redhat.com/show_bug.cgi?id=846465
bugzilla.redhat.com/show_bug.cgi?id=849788
bugzilla.redhat.com/show_bug.cgi?id=849790
bugzilla.redhat.com/show_bug.cgi?id=856299
bugzilla.redhat.com/show_bug.cgi?id=860011
bugzilla.redhat.com/show_bug.cgi?id=861234
bugzilla.redhat.com/show_bug.cgi?id=861838
bugzilla.redhat.com/show_bug.cgi?id=866677
bugzilla.redhat.com/show_bug.cgi?id=868403
bugzilla.redhat.com/show_bug.cgi?id=868881
bugzilla.redhat.com/show_bug.cgi?id=870058
bugzilla.redhat.com/show_bug.cgi?id=871774
bugzilla.redhat.com/show_bug.cgi?id=876193
bugzilla.redhat.com/show_bug.cgi?id=876664
bugzilla.redhat.com/show_bug.cgi?id=877081
bugzilla.redhat.com/show_bug.cgi?id=877553
bugzilla.redhat.com/show_bug.cgi?id=882243
bugzilla.redhat.com/show_bug.cgi?id=884036
bugzilla.redhat.com/show_bug.cgi?id=888392
bugzilla.redhat.com/show_bug.cgi?id=893980
bugzilla.redhat.com/show_bug.cgi?id=895535
issues.apache.org/jira/browse/QPID-4629
issues.apache.org/jira/issues/?jql=fixVersion%20%3D%20%220.21%22%20AND%20project%20%3D%20QPID
rhn.redhat.com/errata/RHSA-2013-0561.html