Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme up to and including 4.12.0 are vulnerable to an algorithmic complexity attack. An attacker can provide crafted input which, when inserted into the symbol table, will result in O(n) lookup time.
References
Link | Resource |
---|---|
http://lists.gnu.org/archive/html/chicken-announce/2017-07/msg00000.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-07-16T21:00:00
Updated: 2017-07-16T21:57:01
Reserved: 2017-07-16T00:00:00
Link: CVE-2017-11343
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-07-17T13:18:20.890
Modified: 2017-07-26T20:04:49.597
Link: CVE-2017-11343
JSON object: View
Redhat Information
No data.
CWE