CVE-2012-4460

Priority
Description
The serializing/deserializing functions in the qpid::framing::Buffer class
in Apache Qpid 0.20 and earlier allow remote attackers to cause a denial of
service (assertion failure and daemon exit) via unspecified vectors. NOTE:
this issue could also trigger an out-of-bounds read, but it might not
trigger a crash.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Ubuntu 19.10 (Eoan Ermine):DNE
Ubuntu 20.04 (Focal Fossa):DNE
More Information

Updated: 2020-04-24 03:14:47 UTC (commit d3f8a6ed481830fb100109a132bef581fc4176fe)