Total vulnerabilities in the database
OCaml 3.12.1 and earlier computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
| Software | From | Fixed in |
|---|---|---|
| inria / ocaml | 3.01 | 3.01.x |
| inria / ocaml | 3.07-beta2 | 3.07-beta2.x |
| inria / ocaml | 3.04 | 3.04.x |
| inria / ocaml | - | 3.12.1.x |
| inria / ocaml | 3.07 | 3.07.x |
| inria / ocaml | 3.12 | 3.12.x |
| inria / ocaml | 3.02 | 3.02.x |
| inria / ocaml | 3.07-pl2 | 3.07-pl2.x |
| inria / ocaml | 1.07 | 1.07.x |
| inria / ocaml | 3.10 | 3.10.x |
| inria / ocaml | 2.04 | 2.04.x |
| inria / ocaml | 3.07-beta1 | 3.07-beta1.x |
| inria / ocaml | 3.08 | 3.08.x |
| inria / ocaml | 3.09 | 3.09.x |
| inria / ocaml | 2.02 | 2.02.x |
| inria / ocaml | 3.11 | 3.11.x |
| inria / ocaml | 3.05-beta | 3.05-beta.x |
| inria / ocaml | 3.00 | 3.00.x |
| inria / ocaml | 3.06 | 3.06.x |
| inria / ocaml | 3.03-alpha | 3.03-alpha.x |
| inria / ocaml | 2.99-alpha | 2.99-alpha.x |