Description
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
Remediation
References
Related Vulnerabilities
WordPress Plugin Booking.com Banner Creator Unspecified Vulnerability (1.4.5)
WordPress Plugin BuddyPress Global Search Cross-Site Scripting (1.1.0)
SharePoint CVE-2023-36890 Vulnerability (CVE-2023-36890)
Artifactory Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-10321)
OpenSSL Resource Management Errors Vulnerability (CVE-2015-1792)