Back to search
CVE-2019-0222
Published: Mar 28, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame can lead to broker Out of Memory exception making it unresponsive.
| Vendor | Product | Versions |
|---|---|---|
Apache | Apache ActiveMQ | affected Apache ActiveMQ 5.0.0 - 5.15.8 |
References
[activemq-commits] 20190327 [CONF] Apache ActiveMQ > Security Advisories
mailing-list
x_refsource_MLIST
[activemq-users] 20190327 CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown
mailing-list
x_refsource_MLIST
[activemq-dev] 20190327 CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown
mailing-list
x_refsource_MLIST
[oss-security] 20190327 [ANNOUNCE] CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown
mailing-list
x_refsource_MLIST
[activemq-dev] 20190327 Re: Website
mailing-list
x_refsource_MLIST
[activemq-dev] 20190328 Re: Website
mailing-list
x_refsource_MLIST
107622
vdb-entry
x_refsource_BID
[activemq-commits] 20200514 [activemq-website] branch master updated: Publish CVE-2020-1941 security advisory
mailing-list
x_refsource_MLIST
https://www.oracle.com/security-alerts/cpuapr2020.html
x_refsource_MISC
https://www.oracle.com/security-alerts/cpujul2020.html
x_refsource_MISC
https://security.netapp.com/advisory/ntap-20190502-0006/
x_refsource_CONFIRM
[activemq-commits] 20200910 [activemq-website] branch master updated: Publish CVE-2020-11998
mailing-list
x_refsource_MLIST
[activemq-commits] 20210208 [activemq-website] branch master updated: Publish CVE-2020-13947
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20210305 [SECURITY] [DLA 2582-1] mqtt-client security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20210305 [SECURITY] [DLA 2583-1] activemq security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now