CVE-2011-5037

NameCVE-2011-5037
DescriptionGoogle V8 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, as demonstrated by attacks against Node.js.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs653962

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
libv8sourcesqueeze(unfixed)end-of-life
libv8source(unstable)3.6.6.14-2653962

Notes

[squeeze] - libv8 <end-of-life> (Unsupported in squeeze-lts)

Search for package or bug name: Reporting problems