NVD

Id
42188  
Name
CVE-2012-0039  
Description
** DISPUTED ** GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table. NOTE: this issue may be disputed by the vendor; the existence of the g_str_hash function is not a vulnerability in the library, because callers of g_hash_table_new and g_hash_table_new_full can specify an arbitrary hash function that is appropriate for the application.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-19  
Published
2012-01-14  
Modified Date
2012-02-08  
Seq
2012-0039  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
212975 42188 CVE-2012-0039 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=655044  View
212976 42188 CVE-2012-0039 [gtk-devel-list] 20030529 Algorimic Complexity Attack on GLIB 2.2.1  View
212977 42188 CVE-2012-0039 [oss-security] 20120110 glib2 hash dos oCert-2011-003  View
212978 42188 CVE-2012-0039 https://bugzilla.redhat.com/show_bug.cgi?id=772720  View

Related JVN