CVE-2012-1150

NONECVSS 0.0

0.0

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

🔗 References (36)

secalert@redhathttp://bugs.python.org/issue13703
secalert@redhathttp://lists.apple.com/archives/security-announce/2013/Oct/msg00004.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html
secalert@redhathttp://mail.python.org/pipermail/python-dev/2011-December/115116.html
secalert@redhathttp://mail.python.org/pipermail/python-dev/2012-January/115892.html
secalert@redhathttp://python.org/download/releases/2.6.8/
secalert@redhathttp://python.org/download/releases/2.7.3/
secalert@redhathttp://python.org/download/releases/3.1.5/
secalert@redhathttp://python.org/download/releases/3.2.3/
secalert@redhathttp://secunia.com/advisories/50858
secalert@redhathttp://secunia.com/advisories/51087
secalert@redhathttp://secunia.com/advisories/51089
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/10/3
secalert@redhathttp://www.ubuntu.com/usn/USN-1592-1
secalert@redhathttp://www.ubuntu.com/usn/USN-1596-1

Is Your Infrastructure Affected by CVE-2012-1150?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-1150

📅 Published

🔄 Last Modified

🔗 References (36)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-1150?