OVAL Reference oval:com.ubuntu.precise:def:20125373000

Oval Definition:

oval:com.ubuntu.precise:def:20125373000

Revision Date:	2012-11-28	Version:	1
Title:	CVE-2012-5373 on Ubuntu 12.04 LTS (precise) - low.
Description:	Oracle Java SE 7 and earlier, and OpenJDK 7 and earlier, computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against the MurmurHash3 algorithm, a different vulnerability than CVE-2012-2739.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-5373
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'icedtea-web' package in precise is not affected (note: 'code-not-present'). OR The 'openjdk-6' package in precise is affected and needs fixing. OR The 'openjdk-7' package in precise was vulnerable but has been fixed (note: '7u51-2.4.4-0ubuntu0.12.04.2').