Vulnerability in Apache Qpid

CVE-2009-5005

The Cluster::deliveredEvent function in cluster/Cluster.cpp in Apache Qpid, as used in Red Hat Enterprise MRG before 1.3 and other products, allows remote attackers to cause a denial of service (daemon crash and cluster outage) via invalid…

EPSS: 0.016 (82.1th percentile) — read the EPSS interpretation.

Affected products

Apache Qpid
Redhat Enterprise_mrg — versions 1.0, 1.0.1, 1.1.1
N/a — versions n/a

References

RHSA-2010:0774 (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM)
ADV-2010-2684 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
secalert@redhat.com (x_refsource_CONFIRM, Patch)
41812 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
41710 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
RHSA-2010:0773 (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)