Bug#655044: glib2.0: ghashtable vulnerable to oCert-2011-003 DOS attacks
Michael Biebl
biebl at debian.org
Sun Jan 8 04:34:42 UTC 2012
On 08.01.2012 02:28, John Lightsey wrote:
> The standard hashing functions provided with the ghashtable implementation
> in glib are vulnerable to the algorithmic complexity attacks described in
> oCert-2011-003
...
> http://mail.gnome.org/archives/gtk-devel-list/2003-May/msg00111.html
This discussion is from 2003 and had no real conclusion.
Have you checked if the current code base is still vulnerable?
--
Why is it that all of the instruments seeking intelligent life in the
universe are pointed away from Earth?
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 900 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20120108/eee4b595/attachment.pgp>
More information about the pkg-gnome-maintainers
mailing list