Search for packages
| purl | pkg:rpm/redhat/qpid-jca@0.18-8?arch=el6 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2wvq-kmeb-mqfm
Aliases: CVE-2012-4458 |
qpid-cpp: long arrays of zero-width types cause a denial of service | There are no reported fixed by versions. |
|
VCID-4nhn-xh71-5qhr
Aliases: CVE-2012-4459 |
qpid-cpp: crash due to qpid::framing::Buffer::checkAvailable() wraparound | There are no reported fixed by versions. |
|
VCID-yk5h-r1m4-ckds
Aliases: CVE-2012-4446 GHSA-mrgh-6x42-x6xf |
Improper Authentication The default configuration for Apache Qpid 0.20 and earlier, when the federation_tag attribute is enabled, accepts AMQP connections without checking the source user ID, which allows remote attackers to bypass authentication and have other unspecified impact via an AMQP request. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:52:14.189636+00:00 | RedHat Importer | Affected by | VCID-4nhn-xh71-5qhr | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4459.json | 38.0.0 |
| 2026-04-01T14:52:13.833942+00:00 | RedHat Importer | Affected by | VCID-2wvq-kmeb-mqfm | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4458.json | 38.0.0 |
| 2026-04-01T14:52:12.757709+00:00 | RedHat Importer | Affected by | VCID-yk5h-r1m4-ckds | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4446.json | 38.0.0 |