CVE-2012-0841
EPSS 1.0%libxml2 - denial of service
發布日:2012/12/21修改日:2026/4/28
描述
libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data.
受影響套件(2)
- Debian/libxml2from 0, < 2.7.8.dfsg-8
- Debian/libxml2from 0, < 2.7.8.dfsg-2+squeeze3