Homepage
About Snyk

org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol@6.0.8 vulnerabilities

Go back to all versions of this package
Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Denial of Service (DoS)

org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol is an AMQP 0-8, 0-9 and 0-9-1 protocol broker plug-in.

Affected versions of this package are vulnerable to Denial of Service (DoS). An unauthenticated attacker could crash a broker instance by sending specially crafted commands using AMQP protocol versions below 1.0.

How to fix Denial of Service (DoS)?

Upgrade org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol to version 7.0.7 or higher.

[6.0.0,7.0.7)
  • H
Denial of Service (DoS)

org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol is a powerful open-source message broker.

Affected versions of this package are vulnerable to Denial of Service attacks. When AMQP protocols are used to publish messages, an attacker could send a message greater than the allowed maximum massege size, which would then crash the broker.

How to fix Denial of Service (DoS)?

Upgrade org.apache.qpid:qpid-broker-plugins-amqp-0-8-protocol to version 7.0.5 or higher.

[,7.0.5)
Go back to all versions of this package