Apache ActiveMQ Artemis is vulnerable to denial of service. The vulnerability exists due to an out of memory error when passing XID allowing an attacker to crash the system by maliciously amending the packet to show a smaller size than the packet itself.
github.com/apache/activemq-artemis/pull/3862
github.com/apache/activemq-artemis/pull/3862/commits/1f92368240229b8f5db92a92a72c703faf83e9b7
github.com/apache/activemq-artemis/pull/3871
github.com/apache/activemq-artemis/pull/3871/commits/153d2e9a979aead8dff95fbc91d659ecc7d0fb82
issues.apache.org/jira/browse/ARTEMIS-3593
lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2
security.netapp.com/advisory/ntap-20220303-0003/