HIGH 7.5
GHSA-pr38-qpxm-g88x
Apache ActiveMQ Artemis Uncontrolled Resource Consumption (DoS)
Details
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.
Are you affected?
Enter the version of the package you're using.
Affected packages
Maven / org.apache.activemq:artemis-core-client
Introduced in:
0 Fixed in: 2.19.1 Fix
# pom.xml: bump <version>2.19.1</version> for org.apache.activemq:artemis-core-client References
- https://nvd.nist.gov/vuln/detail/CVE-2022-23913 [ADVISORY]
- https://github.com/github/codeql-java-CVE-coverage/issues/1061 [WEB]
- https://github.com/apache/activemq-artemis/pull/3862 [WEB]
- https://github.com/apache/activemq-artemis/pull/3862/commits/1f92368240229b8f5db92a92a72c703faf83e9b7 [WEB]
- https://github.com/apache/activemq-artemis/pull/3871 [WEB]
- https://github.com/apache/activemq-artemis/pull/3871/commits/153d2e9a979aead8dff95fbc91d659ecc7d0fb82 [WEB]
- https://github.com/apache/activemq-artemis [PACKAGE]
- https://issues.apache.org/jira/browse/ARTEMIS-3593 [WEB]
- https://lists.apache.org/thread/fjynj57rd99s814rdn5hzvmx8lz403q2 [WEB]
- https://security.netapp.com/advisory/ntap-20220303-0003 [WEB]