The serializing/deserializing functions in the qpid::framing::Buffer class in Apache Qpid 0.20 and previous versions allow remote malicious users to cause a denial of service (assertion failure and daemon exit) via unspecified vectors. NOTE: this issue could also trigger an out-of-bounds read, but it might not trigger a crash.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache qpid 0.14 |
||
apache qpid 0.7 |
||
apache qpid 0.15 |
||
apache qpid 0.10 |
||
apache qpid 0.17 |
||
apache qpid |
||
apache qpid 0.9 |
||
apache qpid 0.13 |
||
apache qpid 0.6 |
||
apache qpid 0.11 |
||
apache qpid 0.12 |
||
apache qpid 0.18 |
||
apache qpid 0.16 |
||
apache qpid 0.19 |
||
apache qpid 0.5 |
||
apache qpid 0.8 |