[ANNOUNCE] CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[ANNOUNCE] CVE-2019-0222 - Apache ActiveMQ: Corrupt MQTT frame can cause broker shutdown

dejanb
The following security vulnerability was reported against Apache
ActiveMQ 5.15.8 and older versions.

Please check the following document and see if you’re affected by the issue.

http://activemq.apache.org/security-advisories.data/CVE-2019-0222-announcement.txt

Apache ActiveMQ 5.15.9 has been released with appropriate fixes and is
available for upgrade.