The attacks target weaknesses in the hash algorithms that permit multiple hash collisions to take place.
Ruby On Rails, Mozilla and others have moved to a new hash built by the researchers who found the hole. Java has not."
Link to Original Source
Please create an account to participate in the Slashdot moderation system
If it happens once, it's a bug. If it happens twice, it's a feature. If it happens more than twice, it's a design philosophy.