Bug#792857: CVE-2014-3576
Emmanuel Bourg
ebourg at apache.org
Sun Jul 19 15:35:54 UTC 2015
Le 19/07/2015 14:44, Moritz Muehlenhoff a écrit :
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3576 is scarce on
> details, but per the fixed upstream release probably affects oldstable
> and stable.
I suspect this was fixed with this commit [1]. This modification was
released with the version 5.11, but it wasn't included in the version
5.10.1 [1] as reported in the RedHat bug.
Emmanuel Bourg
[1] https://github.com/apache/activemq/commit/00921f2
[2]
https://github.com/apache/activemq/blob/activemq-5.10.1/activemq-broker/src/main/java/org/apache/activemq/broker/TransportConnection.java#L1536
More information about the pkg-java-maintainers
mailing list