jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed

...

PT-2026-32565

Name of the Vulnerable Software and Affected Versions jq versions prior to commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784 Description The software used MurmurHash3 with a hardcoded, publicly visible seed 0x432A9843 for all JSON object hash table operations. This allows an attacker to precompute...

OSV-2024-711 Security exception in org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70826 Crash type: Security exception Crash state: org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext org.antlr.v4.runtime.misc.MurmurHash.update org.antlr.v4.runtime.misc.MurmurHash.update...

OSV-2024-181 Security exception in org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=67461 Crash type: Security exception Crash state: org.antlr.v4.runtime.atn.PredictionContext.fromRuleContext org.antlr.v4.runtime.misc.MurmurHash.update org.antlr.v4.runtime.misc.MurmurHash.update...

PT-2024-40669 · Antlr4 · Antlr4

Name of the Vulnerable Software and Affected Versions: antlr4 affected versions not specified Description: The issue is related to a security exception in the antlr4 library. The crash occurs in the fromRuleContext function of the PredictionContext class and involves the update function of the...

MurMurHash - Tool To Calculate A MurmurHash Value Of A Favicon To Hunt Phishing Websites On The Shodan Platform

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform. What is MurMurHash? MurmurHash is a non-cryptographic hash function suitable for general hash-based lookup. The name comes from two basic operations, multiply MU and rotate R, used i...

Oracle Java SE 'MurmurHash' Algorithm Hash Collision DoS Vulnerability (Windows)

This host is installed with Oracle Java SE and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gboraclejavasemurmurhashdosvulnwin.nasl 7699 2017-11-08 12:10:34Z santu $ Oracle Java SE 'MurmurHash' Algorithm Hash Collision DoS Vulnerability Windows Authors: Sharath S...

Oracle Java SE 'MurmurHash' Algorithm Hash Collision DoS Vulnerability - Windows

Oracle Java SE is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[oCERT-2012-001] multiple implementations denial-of-service via MurmurHash algorithm collision

2012-001 multiple implementations denial-of-service via MurmurHash algorithm collision Description: A variety of programming languages suffer from a denial-of-service DoS condition against storage functions of key/value pairs in hash data structures, the condition can be leveraged by exploiting...

MurmurHash algorythm vulnerabilities

It's easy to predict collisions...