Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Amigopod and Hash Collision Vuln

This thread has been viewed 0 times

  • 1.  Amigopod and Hash Collision Vuln

    Posted Jan 19, 2012 12:15 AM

    As Amigopod runs PHP prior to 5.3.9, is it vulnerable to the recent hash collision denial of service (http://isc.sans.edu/diary.html?storyid=12286)?

     

    Or is the PHP on the Amigopod secured from this by the way it's configured?

     

    Regards

    Tyson



  • 2.  RE: Amigopod and Hash Collision Vuln

    Posted Jan 19, 2012 01:48 AM

    This issue will be fixed with a PHP update in the next release.

     

    See: https://rhn.redhat.com/errata/RHSA-2012-0019.html