CVE-2012-0841

libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data.

Published: Dec 21, 2012
Updated: Nov 9, 2025
CVE: CVE-2012-0841
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
xmlsoft / libxml2	2.2.0	2.2.0.x
xmlsoft / libxml2	2.2.2	2.2.2.x
xmlsoft / libxml2	2.4.30	2.4.30.x
xmlsoft / libxml2	2.6.16	2.6.16.x
xmlsoft / libxml2	1.8.0	1.8.0.x
xmlsoft / libxml2	1.8.16	1.8.16.x
xmlsoft / libxml2	2.6.32	2.6.32.x
xmlsoft / libxml2	2.1.0	2.1.0.x
xmlsoft / libxml2	2.6.29	2.6.29.x
xmlsoft / libxml2	2.4.19	2.4.19.x
xmlsoft / libxml2	2.4.7	2.4.7.x
xmlsoft / libxml2	2.4.17	2.4.17.x
xmlsoft / libxml2	2.2.9	2.2.9.x
xmlsoft / libxml2	2.3.6	2.3.6.x
xmlsoft / libxml2	2.6.26	2.6.26.x
xmlsoft / libxml2	2.6.11	2.6.11.x
xmlsoft / libxml2	1.7.1	1.7.1.x
xmlsoft / libxml2	2.7.2	2.7.2.x
xmlsoft / libxml2	2.4.21	2.4.21.x
xmlsoft / libxml2	2.4.20	2.4.20.x
xmlsoft / libxml2	2.3.7	2.3.7.x
xmlsoft / libxml2	2.6.17	2.6.17.x
xmlsoft / libxml2	2.2.4	2.2.4.x
xmlsoft / libxml2	2.4.25	2.4.25.x
xmlsoft / libxml2	2.4.24	2.4.24.x
xmlsoft / libxml2	2.5.0	2.5.0.x
xmlsoft / libxml2	2.4.6	2.4.6.x
xmlsoft / libxml2	2.4.12	2.4.12.x
xmlsoft / libxml2	2.3.8	2.3.8.x
xmlsoft / libxml2	1.8.5	1.8.5.x
xmlsoft / libxml2	2.6.27	2.6.27.x
xmlsoft / libxml2	2.3.13	2.3.13.x
xmlsoft / libxml2	2.3.14	2.3.14.x
xmlsoft / libxml2	2.1.1	2.1.1.x
xmlsoft / libxml2	2.2.6	2.2.6.x
xmlsoft / libxml2	2.2.10	2.2.10.x
xmlsoft / libxml2	2.4.13	2.4.13.x
xmlsoft / libxml2	2.3.1	2.3.1.x
xmlsoft / libxml2	2.6.13	2.6.13.x
xmlsoft / libxml2	2.7.7	2.7.7.x
xmlsoft / libxml2	1.7.0	1.7.0.x
xmlsoft / libxml2	2.6.7	2.6.7.x
xmlsoft / libxml2	2.6.14	2.6.14.x
xmlsoft / libxml2	2.4.27	2.4.27.x
xmlsoft / libxml2	2.4.18	2.4.18.x
xmlsoft / libxml2	2.5.7	2.5.7.x
xmlsoft / libxml2	2.3.0	2.3.0.x
xmlsoft / libxml2	2.4.10	2.4.10.x
xmlsoft / libxml2	1.8.10	1.8.10.x
xmlsoft / libxml2	1.8.13	1.8.13.x
xmlsoft / libxml2	2.4.26	2.4.26.x
xmlsoft / libxml2	2.5.8	2.5.8.x
xmlsoft / libxml2	2.4.28	2.4.28.x
xmlsoft / libxml2	2.3.3	2.3.3.x
xmlsoft / libxml2	2.2.8	2.2.8.x
xmlsoft / libxml2	2.6.23	2.6.23.x
xmlsoft / libxml2	2.4.9	2.4.9.x
xmlsoft / libxml2	1.8.2	1.8.2.x
xmlsoft / libxml2	2.4.5	2.4.5.x
xmlsoft / libxml2	2.4.8	2.4.8.x
xmlsoft / libxml2	1.8.9	1.8.9.x
xmlsoft / libxml2	2.6.8	2.6.8.x
xmlsoft / libxml2	1.7.2	1.7.2.x
xmlsoft / libxml2	2.4.15	2.4.15.x
xmlsoft / libxml2	2.4.11	2.4.11.x
xmlsoft / libxml2	2.6.2	2.6.2.x
xmlsoft / libxml2	2.2.7	2.2.7.x
xmlsoft / libxml2	2.2.5	2.2.5.x
xmlsoft / libxml2	2.2.3	2.2.3.x
xmlsoft / libxml2	2.4.22	2.4.22.x
xmlsoft / libxml2	2.6.5	2.6.5.x
xmlsoft / libxml2	2.6.4	2.6.4.x
xmlsoft / libxml2	2.7.5	2.7.5.x
xmlsoft / libxml2	2.6.18	2.6.18.x
xmlsoft / libxml2	2.4.16	2.4.16.x
xmlsoft / libxml2	2.5.11	2.5.11.x
xmlsoft / libxml2	2.6.24	2.6.24.x
xmlsoft / libxml2	1.8.7	1.8.7.x
xmlsoft / libxml2	2.3.5	2.3.5.x
xmlsoft / libxml2	2.0.0	2.0.0.x
xmlsoft / libxml2	2.3.10	2.3.10.x
xmlsoft / libxml2	1.8.6	1.8.6.x
xmlsoft / libxml2	2.4.2	2.4.2.x
xmlsoft / libxml2	2.7.3	2.7.3.x
xmlsoft / libxml2	2.3.4	2.3.4.x
xmlsoft / libxml2	1.8.3	1.8.3.x
xmlsoft / libxml2	2.2.0-beta	2.2.0-beta.x
xmlsoft / libxml2	2.6.1	2.6.1.x
xmlsoft / libxml2	2.6.20	2.6.20.x
xmlsoft / libxml2	2.6.31	2.6.31.x
xmlsoft / libxml2	2.7.1	2.7.1.x
xmlsoft / libxml2	2.2.1	2.2.1.x
xmlsoft / libxml2	2.7.0	2.7.0.x
xmlsoft / libxml2	2.6.21	2.6.21.x
xmlsoft / libxml2	2.7.6	2.7.6.x
xmlsoft / libxml2	1.7.3	1.7.3.x
xmlsoft / libxml2	2.3.9	2.3.9.x
xmlsoft / libxml2	2.4.1	2.4.1.x
xmlsoft / libxml2	2.4.23	2.4.23.x
xmlsoft / libxml2	2.6.12	2.6.12.x
xmlsoft / libxml2	2.6.0	2.6.0.x
xmlsoft / libxml2	2.6.25	2.6.25.x
xmlsoft / libxml2	2.6.9	2.6.9.x
xmlsoft / libxml2	2.5.4	2.5.4.x
xmlsoft / libxml2	2.6.30	2.6.30.x
xmlsoft / libxml2	-	2.7.8.x
xmlsoft / libxml2	1.8.1	1.8.1.x
xmlsoft / libxml2	2.3.11	2.3.11.x
xmlsoft / libxml2	2.4.3	2.4.3.x
xmlsoft / libxml2	1.8.14	1.8.14.x
xmlsoft / libxml2	2.7.4	2.7.4.x
xmlsoft / libxml2	1.7.4	1.7.4.x
xmlsoft / libxml2	2.6.28	2.6.28.x
xmlsoft / libxml2	1.8.4	1.8.4.x
xmlsoft / libxml2	2.5.10	2.5.10.x
xmlsoft / libxml2	2.3.12	2.3.12.x
xmlsoft / libxml2	2.4.4	2.4.4.x
xmlsoft / libxml2	2.4.14	2.4.14.x
xmlsoft / libxml2	2.6.22	2.6.22.x
xmlsoft / libxml2	2.3.2	2.3.2.x
xmlsoft / libxml2	2.6.3	2.6.3.x
xmlsoft / libxml2	2.2.11	2.2.11.x
xmlsoft / libxml2	2.4.29	2.4.29.x
xmlsoft / libxml2	2.6.6	2.6.6.x
apple / iphone_os	6.1.2	6.1.2.x
apple / iphone_os	3.0	3.0.x
apple / iphone_os	3.2	3.2.x
apple / iphone_os	3.1.3	3.1.3.x
apple / iphone_os	1.0.2	1.0.2.x
apple / iphone_os	4.3.2	4.3.2.x
apple / iphone_os	4.0.2	4.0.2.x
apple / iphone_os	-	6.1.4.x
apple / iphone_os	2.2	2.2.x
apple / iphone_os	1.1.1	1.1.1.x
apple / iphone_os	6.1.3	6.1.3.x
apple / iphone_os	5.1	5.1.x
apple / iphone_os	4.2.8	4.2.8.x
apple / iphone_os	6.0.2	6.0.2.x
apple / iphone_os	4.1	4.1.x
apple / iphone_os	2.0.0	2.0.0.x
apple / iphone_os	3.1.2	3.1.2.x
apple / iphone_os	3.0.1	3.0.1.x
apple / iphone_os	4.3.1	4.3.1.x
apple / iphone_os	4.2.5	4.2.5.x
apple / iphone_os	1.1.2	1.1.2.x
apple / iphone_os	3.1	3.1.x
apple / iphone_os	1.1.3	1.1.3.x
apple / iphone_os	1.1.0	1.1.0.x
apple / iphone_os	1.0.1	1.0.1.x
apple / iphone_os	2.1	2.1.x
apple / iphone_os	6.0	6.0.x
apple / iphone_os	4.3.5	4.3.5.x
apple / iphone_os	6.1	6.1.x
apple / iphone_os	4.2.1	4.2.1.x
apple / iphone_os	1.1.5	1.1.5.x
apple / iphone_os	4.0.1	4.0.1.x
apple / iphone_os	4.3.3	4.3.3.x
apple / iphone_os	5.0.1	5.0.1.x
apple / iphone_os	2.1.1	2.1.1.x
apple / iphone_os	1.1.4	1.1.4.x
apple / iphone_os	5.0	5.0.x
apple / iphone_os	1.0.0	1.0.0.x
apple / iphone_os	5.1.1	5.1.1.x
apple / iphone_os	2.0.2	2.0.2.x
apple / iphone_os	2.0	2.0.x
apple / iphone_os	2.0.1	2.0.1.x
apple / iphone_os	4.0	4.0.x
apple / iphone_os	4.3.0	4.3.0.x
apple / iphone_os	2.2.1	2.2.1.x
apple / iphone_os	3.2.1	3.2.1.x
apple / iphone_os	3.2.2	3.2.2.x
apple / iphone_os	6.0.1	6.0.1.x

Vulnerability Database

310,450

CVE-2012-0841

Deep Security Visibility Without the Complexity