CVE-2012-0785

NameCVE-2012-0785
DescriptionHash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs655553, 655554

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
jenkinssource(unstable)1.409.3+dfsg-2
jenkins-executable-warsource(unstable)1.25-1655554
jenkins-winstonesource(unstable)0.9.10-jenkins-31+dfsg-1655553

Search for package or bug name: Reporting problems