=====================================================================

                             CERT-Renater

                   Note d'Information No. 2021/VULN067
_____________________________________________________________________

DATE                : 08/02/2022

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running Apache ActiveMQ Artemis versions
                             prior to 2.20.0, 2.19.1.

=====================================================================
https://lists.apache.org/thread/8fx2wdjcsowsdmc9zqp86hmmyzcmopj3
_____________________________________________________________________

CVE-2022-23913: Apache ActiveMQ Artemis DoS


Description:

In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could
partially disrupt availability (DoS) through uncontrolled resource
consumption of memory.


This issue is being tracked as:

https://issues.apache.org/jira/browse/ARTEMIS-3593


Mitigation:

Upgrade to Apache ActiveMQ Artemis 2.20.0 or 2.19.1 (if you're still
using Java 8).


=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================