MDVSA-2012:019 -- Mandriva aprID: oval:org.secpod.oval:def:1300006 | Date: (C)2013-04-08 (M)2022-10-10 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in ASF APR: tables/apr_hash.c in the Apache Portable Runtime library through 1.4.5 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service via crafted input to an application that maintains a hash table . APR has been upgraded to the latest version which holds many improvments over the previous versions and is not vulnerable to this issue.
Platform: |
Mandriva Enterprise Server 5.2 |