Package "activemq"

Name:	activemq
Description:	Java message broker - server
Latest version:	5.16.1-1ubuntu0.1
Release:	jammy (22.04)
Level:	security
Repository:	universe
Homepage:	http://activemq.apache.org

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "activemq"

All arch deb package

APT INSTALL

Other versions of "activemq" in Jammy

Repository	Area	Version
base	universe	5.16.1-1
updates	universe	5.16.1-1ubuntu0.1

Packages in group

Deleted packages are displayed in grey.

libactivemq-java

Changelog

Version: 5.16.1-1ubuntu0.1 2024-12-04 18:07:00 UTC

activemq (5.16.1-1ubuntu0.1) jammy-security; urgency=medium * Merge from Debian * SECURITY UPDATE: Remote Code Execution - 0001-AMQ-9201-Update-Jolokia-default-access-configuration.patch: AMQ-9201 - Update Jolokia default access configuration - 0001-AMQ-9370-Openwire-marshaller-should-validate-Throwab.patch: AMQ-9370 - Openwire marshaller should validate Throwable class type - CVE-2022-41678 - CVE-2023-46604 * mising-dependency-in-stomp-pom.patch: backported from noble. Added for a missing dependency that caused FTBFS on jammy. -- Noam Nedelec-Salmon <email address hidden> Mon, 02 Dec 2024 15:27:16 +0100

CVE-2022-41678	Once an user is authenticated on Jolokia, he can potentially trigger arbitrary code execution. In details, in ActiveMQ configurations, jetty allows
CVE-2023-46604	The Java OpenWire protocol marshaller is vulnerable to Remote Code Execution. This vulnerability may allow a remote attacker with network access to

About - Send Feedback to @ubuntu_updates

Package "activemq"

Links

Download "activemq"

Other versions of "activemq" in Jammy

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

proposed

security

updates

PPA updates