[Bug 943451] Re: Precise vulnerable to hash collision DoS

Launchpad Bug Tracker Sat, 03 Mar 2012 07:05:49 -0800

This bug was fixed in the package ruby1.8 - 1.8.7.352-2ubuntu1

---------------
ruby1.8 (1.8.7.352-2ubuntu1) precise; urgency=low


  * SECURITY UPDATE: Denial of service via crafted hash table keys
    (LP: #943451)
    - debian/patches/CVE-2011-4815.patch: Add randomness to the key hashing
      algorithm to prevent predictable results when inserting objects into a
      hash table. Based on upstream patch.
    - CVE-2011-4815
 -- Tyler Hicks <[email protected]>   Wed, 29 Feb 2012 12:11:48 -0600

** Changed in: ruby1.8 (Ubuntu)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/943451

Title:
  Precise vulnerable to hash collision DoS

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ruby1.8/+bug/943451/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 943451] Re: Precise vulnerable to hash collision DoS

Reply via email to