CVE-2011-4838

Name of the Vulnerable Software and Affected Versions JRuby versions prior to 1.6.5.1

Description The issue allows context-dependent attackers to cause a denial of service, specifically CPU consumption, via crafted input to an application that maintains a hash table. This is due to the computation of hash values without restricting the ability to trigger hash collisions predictably.

Recommendations For versions prior to 1.6.5.1, update to version 1.6.5.1 or later to resolve the issue.