{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/98995?format=json","vulnerability_id":"VCID-16qu-ujqu-hybc","summary":"Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.","aliases":[{"alias":"CVE-2012-1150"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125531?format=json","purl":"pkg:deb/debian/python2.7@2.7.3~rc1-1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.3~rc1-1%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/125526?format=json","purl":"pkg:deb/debian/python2.7@2.7.18-8%2Bdeb11u1?distro=bullseye","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python2.7@2.7.18-8%252Bdeb11u1%3Fdistro=bullseye"},{"url":"http://public2.vulnerablecode.io/api/packages/190450?format=json","purl":"pkg:ebuild/dev-lang/python@2.6.8","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@2.6.8"},{"url":"http://public2.vulnerablecode.io/api/packages/190451?format=json","purl":"pkg:ebuild/dev-lang/python@2.7.3-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@2.7.3-r1"},{"url":"http://public2.vulnerablecode.io/api/packages/190452?format=json","purl":"pkg:ebuild/dev-lang/python@3.2.5-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.2.5-r1"},{"url":"http://public2.vulnerablecode.io/api/packages/190453?format=json","purl":"pkg:ebuild/dev-lang/python@3.3.2-r1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/python@3.3.2-r1"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/183257?format=json","purl":"pkg:rpm/redhat/python@2.4.3-46.el5_8?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16qu-ujqu-hybc"},{"vulnerability":"VCID-2hjs-1vje-ebav"},{"vulnerability":"VCID-36sb-zfdw-jfdn"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.4.3-46.el5_8%3Farch=2"},{"url":"http://public2.vulnerablecode.io/api/packages/183012?format=json","purl":"pkg:rpm/redhat/python@2.6.6-29.el6_2?arch=2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16qu-ujqu-hybc"},{"vulnerability":"VCID-2hjs-1vje-ebav"},{"vulnerability":"VCID-36sb-zfdw-jfdn"},{"vulnerability":"VCID-qf8d-ntcb-cyct"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python@2.6.6-29.el6_2%3Farch=2"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1150.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-1150.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1150","reference_id":"","reference_type":"","scores":[{"value":"0.01741","scoring_system":"epss","scoring_elements":"0.82858","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-1150"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=750555","reference_id":"750555","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=750555"},{"reference_url":"https://security.gentoo.org/glsa/201401-04","reference_id":"GLSA-201401-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201401-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0744","reference_id":"RHSA-2012:0744","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0744"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0745","reference_id":"RHSA-2012:0745","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0745"}],"weaknesses":[],"exploits":[],"severity_range_score":"5.3 - 5.3","exploitability":"0.5","weighted_severity":"0.0","risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-16qu-ujqu-hybc"}