[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 913-1] activemq security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : activemq
Version        : 5.6.0+dfsg-1+deb7u3
CVE ID         : CVE-2015-7559
Debian Bug     : 860866

It was found that Apache ActiveMQ exposed a remote shutdown command in
the ActiveMQConnection class. An attacker could use this flaw to
achieve denial of service on a client.

For Debian 7 "Wheezy", these problems have been fixed in version
5.6.0+dfsg-1+deb7u3.

We recommend that you upgrade your activemq packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=qTcB
-----END PGP SIGNATURE-----
Reply to: