CVE-2012-2739

Name of the Vulnerable Software and Affected Versions Oracle Java SE versions prior to 7 Update 6 OpenJDK versions prior to 7u6 build 12 and 8 before build 39

Description The issue allows context-dependent attackers to cause a denial of service, specifically CPU consumption, via crafted input to an application that maintains a hash table. This is due to the computation of hash values without restricting the ability to trigger hash collisions predictably.

Recommendations For Oracle Java SE versions prior to 7 Update 6, update to version 7 Update 6 or later. For OpenJDK versions prior to 7u6 build 12, update to 7u6 build 12 or later. For OpenJDK version 8 before build 39, update to build 39 or later.