https://bugzilla.redhat.com/show_bug.cgi?id=1942558
--- Comment #14 from Jonathan Christison jochrist@redhat.com --- Marking Red Hat Jboss AMQ 6 as having a low impact, AMQ distributes affected versions of XStream, however its use in AMQ 6 is not susceptible to the vulnerability as the XStream security framework with an allowlist is in place.
This vulnerability is out of security support scope for the following products: * Red Hat JBoss AMQ 6
Please refer to https://access.redhat.com/support/policy/updates/jboss_notes for more details.