← voltar
CVE-2012-1150

CVE-2012-1150

EPSS 5.1%
Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://bugs.python.org/issue13703http://lists.apple.com/archives/security-announce/2013/Oct/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.htmlhttp://mail.python.org/pipermail/python-dev/2011-December/115116.htmlhttp://mail.python.org/pipermail/python-dev/2012-January/115892.htmlhttp://python.org/download/releases/2.6.8/http://python.org/download/releases/2.7.3/http://python.org/download/releases/3.1.5/http://python.org/download/releases/3.2.3/https://bugzilla.redhat.com/show_bug.cgi?id=750555http://secunia.com/advisories/50858http://secunia.com/advisories/51087