983514 – [AMQP 1.0] sending message with priority=4 causes buffer overflow in client

Bug 983514 - [AMQP 1.0] sending message with priority=4 causes buffer overflow in client

Summary: [AMQP 1.0] sending message with priority=4 causes buffer overflow in client

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	Red Hat Enterprise MRG
Classification:	Red Hat
Component:	qpid-cpp
Sub Component:
Version:	Development
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	unspecified
Target Milestone:	3.0
Target Release:	---
Assignee:	Gordon Sim
QA Contact:	Zdenek Kraus
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1010399
TreeView+	depends on / blocked

Reported:	2013-07-11 11:03 UTC by Gordon Sim
Modified:	2015-01-21 12:56 UTC (History)
CC List:	4 users (show)
Fixed In Version:	qpid-qmf-0.22-7
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-01-21 12:56:31 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Apache JIRA	QPID-4985	0	None	None	None	Never

Description Gordon Sim 2013-07-11 11:03:29 UTC

Description of problem:

Sending message with priority=4 over AMQP 1.0 causes buffer overflow and crashes client.

Version-Release number of selected component (if applicable):

qpid 0.22

How reproducible:

100%

Steps to Reproduce:
1.  qpid-send --conection-options {protocol:amqp1.0} --priority 1 --address amq.fanout

Actual results:

Client crashes

Expected results:

Client doesn't crash, but sends message of required priority to the specified address

Additional info:

Comment 1 Gordon Sim 2013-07-11 12:02:38 UTC

Fixed upstream: https://svn.apache.org/r1502192

Comment 2 Zdenek Kraus 2014-02-06 14:34:41 UTC

This issue was tested on RHEL 6.5 x86_64 and i686 with following packages:

perl-qpid-0.22-7.el6
python-qpid-0.22-10.el6
python-qpid-qmf-0.22-26.el6
qpid-cpp-client-0.22-33.el6
qpid-cpp-client-devel-0.22-33.el6
qpid-cpp-client-devel-docs-0.22-33.el6
qpid-cpp-client-ssl-0.22-33.el6
qpid-cpp-debuginfo-0.22-33.el6
qpid-cpp-server-0.22-33.el6
qpid-cpp-server-devel-0.22-33.el6
qpid-cpp-server-ha-0.22-33.el6
qpid-cpp-server-ssl-0.22-33.el6
qpid-cpp-server-store-0.22-33.el6
qpid-cpp-server-xml-0.22-33.el6
qpid-java-client-0.22-5.el6
qpid-java-common-0.22-5.el6
qpid-java-example-0.22-5.el6
qpid-jca-0.22-1.el6
qpid-jca-xarecovery-0.22-1.el6
qpid-proton-c-0.6-1.el6
qpid-proton-c-devel-0.6-1.el6
qpid-proton-debuginfo-0.6-1.el6
qpid-qmf-0.22-26.el6
qpid-qmf-debuginfo-0.22-26.el6
qpid-snmpd-1.0.0-15.el6
qpid-snmpd-debuginfo-1.0.0-15.el6
qpid-tools-0.22-7.el6
ruby-qpid-qmf-0.22-26.el6


Issue was fixed.
-> VERIFIED

Note You need to log in before you can comment on or make changes to this bug.