[issue13703] Hash collision security issue

Gregory P. Smith Fri, 10 Feb 2012 11:24:03 -0800

Gregory P. Smith <g...@krypto.org> added the comment:

Thanks for reviewing Benjamin.  I'm also reviewing this today.  Sorry
for the delay!


BTW, like Schadenfreude?  A hash collision DOS issue "fix" patch for
PHP5 was done poorly and introduced a new security vulnerability that
was just used to let script kiddies root many servers all around the
web:  http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0830

----------

_______________________________________
Python tracker <rep...@bugs.python.org>
<http://bugs.python.org/issue13703>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe: 
http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue13703] Hash collision security issue

Reply via email to