[jira] [Resolved] (XERCESJ-1685) Security threat CVE-2012-0881

Michael Glavassevich (JIRA) Thu, 23 Nov 2017 09:50:25 -0800

     [ 
https://issues.apache.org/jira/browse/XERCESJ-1685?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Michael Glavassevich resolved XERCESJ-1685.
-------------------------------------------
    Resolution: Fixed

Patches have been available for this issue since 2012. See: 
http://svn.apache.org/viewvc?view=revision&revision=1357381 for the fix.

> Security threat CVE-2012-0881
> -----------------------------
>
>                 Key: XERCESJ-1685
>                 URL: https://issues.apache.org/jira/browse/XERCESJ-1685
>             Project: Xerces2-J
>          Issue Type: Bug
>            Reporter: Alberto Fernández
>              Labels: security
>
> Apache Xerces2 Java allows remote attackers to cause a denial of service (CPU 
> consumption) via a crafted message to an XML service, which triggers hash 
> table collisions.
> [https://nvd.nist.gov/vuln/detail/CVE-2012-0881|https://nvd.nist.gov/vuln/detail/CVE-2012-0881]



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Resolved] (XERCESJ-1685) Security threat CVE-2012-0881

Reply via email to