DescriptionTinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via (1) a large number of headers or (2) a large number of forged headers that trigger hash collisions predictably. bucket.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- openSUSE-SU-2013:1201-1, published Mon, 15 Jul 2013 17:04:30 +0200 (CEST)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE 12.3|| ||Patchnames:
|openSUSE Tumbleweed|| ||Patchnames:
openSUSE Tumbleweed GA tinyproxy