Computer Security
[EN] securityvulns.ru no-pyccku


apr / aws libraries DoS
Published:14.02.2012
Source:
SecurityVulns ID:12190
Type:library
Threat Level:
6/10
Description:resources consumption because of collisions in a hash function.
Affected:APACHE : apr 1.4
 AWS : aws 2.10
 AWS : aws 2.11
CVE:CVE-2012-0840 (tables/apr_hash.c in the Apache Portable Runtime (APR) library through 1.4.5 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.)
Original documentdocumentThomas Quinot, AdaCore Security Advisory SA-2012-L119-003 Hash collisions in AWS (14.02.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod