MDVSA-2012:019 -- Mandriva aprID: oval:org.secpod.oval:def:302803 | Date: (C)2012-11-29 (M)2023-11-13 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in ASF APR: tables/apr_hash.c in the Apache Portable Runtime library through 1.4.5 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service via crafted input to an application that maintains a hash table . APR has been upgraded to the latest version which holds many improvments over the previous versions and is not vulnerable to this issue.
Platform: |
Mandriva Linux 2011.0 |
Mandriva Linux 2010.1 |