PT-2019-16922 · Ibm · Ibm Mq
Published
2019-09-27
·
Updated
2022-12-09
·
CVE-2019-4141
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM MQ versions 7.1.0.0 through 7.1.0.9
IBM MQ versions 7.5.0.0 through 7.5.0.9
IBM MQ versions 8.0.0.0 through 8.0.0.11
IBM MQ versions 9.0.0.0 through 9.0.0.6
IBM MQ versions 9.1.0.0 through 9.1.0.2
IBM MQ versions 9.1.1 through 9.1.2
Description
The issue is caused by a memory leak in the clustering code, which can lead to a denial of service attack.
Recommendations
For IBM MQ versions 7.1.0.0 through 7.1.0.9, update to a version outside of this range to resolve the issue.
For IBM MQ versions 7.5.0.0 through 7.5.0.9, update to a version outside of this range to resolve the issue.
For IBM MQ versions 8.0.0.0 through 8.0.0.11, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.0.0.0 through 9.0.0.6, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.1.0.0 through 9.1.0.2, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.1.1 through 9.1.2, update to a version outside of this range to resolve the issue.
Fix
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Mq