#322699 fprobe-ng: Possible DoS attack due to weak hash function

Package:
fprobe-ng
Source:
fprobe
Submitter:
Florian Weimer
Date:
2023-04-26 09:00:44 UTC
Severity:
normal
Tags:
#322699#5
Date:
2005-08-12 09:22:02 UTC
From:
To:
fprobe-ng uses a weak hash function (based on CRC16).  It is likely that
it is subject to the usual DoS attacks.
#322699#10
Date:
2005-08-12 13:04:26 UTC
From:
To:
Hello
Florian Weimer wrote:

Even though it's probably upstream's choice how he wants to fix this,
do you have any suggestions for a proper hash function (md5 or sha1)?

Radu
#322699#15
Date:
2005-08-12 13:39:28 UTC
From:
To:
* Radu Spineanu:

Personally, I think the computational overhead of really safe hash
functions is too high, and you should use balanced binary trees
instead.  However, this view is not universally agreed upon.

The Linux networking code uses Bob Jenkins' hash function ("jhash"),
and the fprobe package follows this example.  I don't know of any
serious attempts of cryptanalysis, but my gut feeling is that jhash is
still to weak.  It's better than CRC, though.
#322699#20
Date:
2012-01-10 17:17:52 UTC
From:
To:
Has there been any progress in the last 6.5 years?

Cheers,
        Moritz