Ubuntu CVE Tracker
Home
Main
Universe
Partner
CVE-2014-3576
Priority
High
Description
The processControlCommand function in broker/TransportConnection.java in
Apache ActiveMQ before 5.11.0 allows remote attackers to cause a denial of
service (shutdown) via a shutdown command.
References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3576
Bugs
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=792857
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3576
Notes
Package
Source:
activemq
(
LP
Ubuntu
Debian
)
Upstream:
released
(5.11.0)
Ubuntu 14.04 ESM:
DNE
(trusty was released [5.6.0+dfsg-1+deb7u1build0.14.04.1])
Ubuntu 20.04 FIPS Compliant:
not-affected
(5.13.2+dfsg-2)
Patches:
More Information
Mitre
NVD
Launchpad
Debian
Updated
: 2022-04-13 12:02:27 UTC (commit
f411bd370d482ef4385c4e751d121a4055fbc009
)