Apache · Apache Portable Runtime (Apr) Library · CVE-2012-0840
**Name of the Vulnerable Software and Affected Versions**
Apache Portable Runtime (APR) library versions through 1.4.5
**Description**
The issue allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, due to the computation of hash values without restricting the ability to trigger hash collisions predictably.
**Recommendations**
For versions through 1.4.5, update to a version that addresses this issue to prevent denial of service attacks.