CVE-2012-0841

Published: Dec 21, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

APPLE-SA-2013-10-22-8

vendor-advisory

x_refsource_APPLE

SUSE-SU-2013:1627

vendor-advisory

x_refsource_SUSE

RHSA-2012:0324

vendor-advisory

x_refsource_REDHAT

[oss-security] 20120222 libxml2: hash table collisions CPU usage DoS

mailing-list

x_refsource_MLIST

RHSA-2013:0217

vendor-advisory

x_refsource_REDHAT

http://support.apple.com/kb/HT6001

x_refsource_CONFIRM

http://xmlsoft.org/news.html

x_refsource_CONFIRM

1026723

vdb-entry

x_refsource_SECTRACK

54886

third-party-advisory

x_refsource_SECUNIA

http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html

x_refsource_CONFIRM

http://support.apple.com/kb/HT5934

x_refsource_CONFIRM

DSA-2417

vendor-advisory

x_refsource_DEBIAN

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=660846

x_refsource_MISC

https://blogs.oracle.com/sunsecurity/entry/cve_2012_0841_denial_of

x_refsource_CONFIRM

55568

third-party-advisory

x_refsource_SECUNIA

52107

vdb-entry

x_refsource_BID

MDVSA-2013:150

vendor-advisory

x_refsource_MANDRIVA

http://git.gnome.org/browse/libxml2/commit/?id=8973d58b7498fa5100a876815476b81fd1a2412a

x_refsource_CONFIRM

http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

x_refsource_CONFIRM

APPLE-SA-2013-09-18-2

vendor-advisory

x_refsource_APPLE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-0841

Description

Affected Products

References