ubuntu · CVE-2012-0785

Quick triage

Priority: medium Published: 2020-02-24 17:15:00 UTC Updated: 2025-08-25 20:25:23 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2012-0785 medium priority: Ubuntu including 3 source packages (jenkins, jenkins-executable-war, jenkins-winstone), 27 status rows across 9 suites (hardy, lucid, maverick, natty, oneiric, precise, quantal, raring, upstream): DNE 12, not-affected 9, ignored 3, released 3.

Description:

Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."

cvelogic Threat Intelligence