MidnightBSD

Advisories for inria

CVE-2012-0839 MEDIUM

OCaml 3.12.1 and earlier computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
inria ocaml 3.00
inria ocaml 3.08
inria ocaml 3.01
inria ocaml *
inria ocaml 3.12
inria ocaml 2.04
inria ocaml 3.03
inria ocaml 3.10
inria ocaml 2.99
inria ocaml 3.07
inria ocaml 3.02
inria ocaml 3.09
inria ocaml 1.07
inria ocaml 3.05
inria ocaml 3.06
inria ocaml 2.02
inria ocaml 3.04
inria ocaml 3.11