Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2012-0987

Опубликовано: 27 июн. 2012
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2012-0987: sblim-cim-client2 security update (LOW)

[2.1.3-2]

  • Fix possible XML Hash DoS Resolves: #803391

[2.1.3]

  • Update to sblim-cim-client2-2.1.3

[2.0.9.2-1]

  • Initial support

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

sblim-cim-client2

2.1.3-2.el6

sblim-cim-client2-javadoc

2.1.3-2.el6

sblim-cim-client2-manual

2.1.3-2.el6

Oracle Linux i686

sblim-cim-client2

2.1.3-2.el6

sblim-cim-client2-javadoc

2.1.3-2.el6

sblim-cim-client2-manual

2.1.3-2.el6

Oracle Linux sparc64

sblim-cim-client2

2.1.3-2.el6

sblim-cim-client2-javadoc

2.1.3-2.el6

sblim-cim-client2-manual

2.1.3-2.el6

Связанные CVE

CVE-2012-2328

Ссылки на источники

Связанные уязвимости

redhat логотип

CVE-2012-2328

redhat
больше 13 лет назад

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability (SBLIM) Common Information Model (CIM) Client (aka sblim-cim-client2) before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted XML file.

nvd логотип

CVE-2012-2328

nvd
больше 11 лет назад

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability (SBLIM) Common Information Model (CIM) Client (aka sblim-cim-client2) before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted XML file.

github логотип

GHSA-6qpq-58gh-897g

github
больше 3 лет назад

internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability (SBLIM) Common Information Model (CIM) Client (aka sblim-cim-client2) before 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted XML file.