Bug 1029437 - paged queue exception exposes information about filesystem
Summary: paged queue exception exposes information about filesystem
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise MRG
Classification: Red Hat
Component: qpid-cpp
Version: 3.0
Hardware: Unspecified
OS: Unspecified
medium
unspecified
Target Milestone: 3.0
: ---
Assignee: Gordon Sim
QA Contact: Eric Sammons
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-11-12 11:48 UTC by Gordon Sim
Modified: 2015-01-21 12:56 UTC (History)
3 users (show)

Fixed In Version: qpid-cpp-0.22-26
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-01-21 12:56:15 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Apache JIRA QPID-5314 0 None None None Never

Description Gordon Sim 2013-11-12 11:48:15 UTC 
Description of problem:

When attempting to send a message larger that then page size of a paged queue, an exception is raised as expected. However this exception includes the full path of the paging file which exposes too much information (that could be sensitive) to the user.

Version-Release number of selected component (if applicable):

Early access

How reproducible:

100%

Steps to Reproduce:
1. create paged queue with default settings
2. send 500k sized message

Actual results:

Exception contains full path of paging file

Expected results:

Exception just contains the information about the queue and the error that occurred.

Additional info:
Comment 1 Gordon Sim 2013-11-12 11:48:52 UTC 
Fixed upstream: https://svn.apache.org/r1540137
Comment 2 Valiantsina Hubeika 2014-01-30 17:14:39 UTC 
tested with python client & verified
Note You need to log in before you can comment on or make changes to this bug.