Lucene search

Veracode Vulnerability DatabaseVERACODE:14575

HistoryMay 02, 2019 - 4:53 a.m.

Denial Of Service (DoS)

2019-05-0204:53:20

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.01 Low

EPSS

Percentile

83.6%

JSON

qpid is vulnerable to denial of service. It was found that the AMQP type decoder in qpidd allowed arbitrary data types in certain messages. A remote attacker could use this flaw to send a message containing an excessively large amount of data, causing qpidd to allocate a large amount of memory and subsequently crash.

CPENameOperatorVersion
mrg-releaseeq2.0.0__1.el6
mrg-releaseeq1.3__2.el5
mrg-releaseeq2.1.0__1.el6
mrg-releaseeq2.2.0__1.el5
mrg-releaseeq2.2.0__1.el6
mrg-releaseeq2.0.0__1.el5
mrg-releaseeq2.1.0__1.el5
mrg-releaseeq1.3.1__1.el5
mrg-releaseeq1.3.2__1.el5
qpid-toolseq0.14__6.el6_3

Name	Operator	Version
mrg-release	eq	2.0.0__1.el6
mrg-release	eq	1.3__2.el5
mrg-release	eq	2.1.0__1.el6
mrg-release	eq	2.2.0__1.el5
mrg-release	eq	2.2.0__1.el6
mrg-release	eq	2.0.0__1.el5
mrg-release	eq	2.1.0__1.el5
mrg-release	eq	1.3.1__1.el5
mrg-release	eq	1.3.2__1.el5
qpid-tools	eq	0.14__6.el6_3

Rows per page:

1-10 of 2041

References

rhn.redhat.com/errata/RHSA-2013-0561.html

rhn.redhat.com/errata/RHSA-2013-0562.html

secunia.com/advisories/52516

svn.apache.org/viewvc?view=revision&revision=1453031

access.redhat.com/knowledge/docs/en-US/Red_Hat_Enterprise_MRG/2/html/Technical_Notes/RHSA-2013-0561.html

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=678612

bugzilla.redhat.com/show_bug.cgi?id=710787

bugzilla.redhat.com/show_bug.cgi?id=720714

bugzilla.redhat.com/show_bug.cgi?id=737685

bugzilla.redhat.com/show_bug.cgi?id=740485

bugzilla.redhat.com/show_bug.cgi?id=754990

bugzilla.redhat.com/show_bug.cgi?id=773719

bugzilla.redhat.com/show_bug.cgi?id=781496

bugzilla.redhat.com/show_bug.cgi?id=782806

bugzilla.redhat.com/show_bug.cgi?id=783215

bugzilla.redhat.com/show_bug.cgi?id=784957

bugzilla.redhat.com/show_bug.cgi?id=786555

bugzilla.redhat.com/show_bug.cgi?id=790004

bugzilla.redhat.com/show_bug.cgi?id=800912

bugzilla.redhat.com/show_bug.cgi?id=801605

bugzilla.redhat.com/show_bug.cgi?id=804752

bugzilla.redhat.com/show_bug.cgi?id=813742

bugzilla.redhat.com/show_bug.cgi?id=814356

bugzilla.redhat.com/show_bug.cgi?id=834256

bugzilla.redhat.com/show_bug.cgi?id=846465

bugzilla.redhat.com/show_bug.cgi?id=849788

bugzilla.redhat.com/show_bug.cgi?id=849790

bugzilla.redhat.com/show_bug.cgi?id=856299

bugzilla.redhat.com/show_bug.cgi?id=860011

bugzilla.redhat.com/show_bug.cgi?id=861234

bugzilla.redhat.com/show_bug.cgi?id=861838

bugzilla.redhat.com/show_bug.cgi?id=866677

bugzilla.redhat.com/show_bug.cgi?id=868403

bugzilla.redhat.com/show_bug.cgi?id=868881

bugzilla.redhat.com/show_bug.cgi?id=870058

bugzilla.redhat.com/show_bug.cgi?id=871774

bugzilla.redhat.com/show_bug.cgi?id=876193

bugzilla.redhat.com/show_bug.cgi?id=876664

bugzilla.redhat.com/show_bug.cgi?id=877081

bugzilla.redhat.com/show_bug.cgi?id=877553

bugzilla.redhat.com/show_bug.cgi?id=882243

bugzilla.redhat.com/show_bug.cgi?id=884036

bugzilla.redhat.com/show_bug.cgi?id=888392

bugzilla.redhat.com/show_bug.cgi?id=893980

bugzilla.redhat.com/show_bug.cgi?id=895535

issues.apache.org/jira/browse/QPID-4629

issues.apache.org/jira/issues/?jql=fixVersion%20%3D%20%220.21%22%20AND%20project%20%3D%20QPID