CVE-2019-6131

svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svgrunusesymbol, svgrunelement, and svgrunuse, as demonstrated by mutool...

Artifex MuPDF Resource Management Error Vulnerability

Artifex MuPDF is a free, lightweight PDF reader from Artifex Software. A security vulnerability exists in the svgrunusesymbol, svgrunelement, and svgrunuse of the svg-run.c file in Artifex MuPDF version 1.14.0. An attacker can exploit this vulnerability to cause infinite recursion...

PT-2019-17969 · Artifex · Artifex Mupdf

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.14.0 Description: The issue is related to infinite recursion with stack consumption in the svg run use symbol, svg run element, and svg run use functions in the svg-run.c file. This can be demonstrated using mutool...

EulerOS 2.0 SP5 : poppler (EulerOS-SA-2019-1010)

According to the versions of the poppler packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - poppler: out of bounds read in pdfunite CVE-2018-13988 - poppler: Infinite recursion in fofi/FoFiType1C.cc:FoFiType1C::cvtGlyph function allows...

libpff Denial of Service Vulnerability

libpff is a tool for accessing files in PFF Personal Folder File and OFF Offline Folder File formats. A security vulnerability exists in libpffitemtreecreatenode in the libpffitemtree.c file in versions prior to libpff experimental-20180714. An attacker can exploit this vulnerability to cause a...

DEBIAN-CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

UBUNTU-CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

Design/Logic Flaw

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

CVE-2018-20348

The CVE-2018-20348 entry documents a local-denial-of-service vulnerability in libpff: specifically, libpff_item_tree_create_node in libpff_item_tree.c (before experimental-20180714) can be triggered by a crafted file, related to libfdata_tree_get_node_value in libfdata_tree.c. Exploitation would ...

CVE-2018-20348

libpffitemtreecreatenode in libpffitemtree.c in libpff before experimental-20180714 allows attackers to cause a denial of service infinite recursion via a crafted file, related to libfdatatreegetnodevalue in libfdatatree.c...

PT-2023-15458 · Unknown +1 · Gpac Mp4Box +1

Name of the Vulnerable Software and Affected Versions: GPAC MP4Box version 2.1-DEV-rev649-ga8f438d20 Description: The issue is caused by infinite recursion in the Media GetSample function, located in isomedia/media.c:662, leading to a segment fault or stack overflow. Recommendations: For GPAC...

DEBIAN-CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

Stack overflow

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

CVE-2018-20103

CVE-2018-20103 affects HAProxy versions up to 1.8.14 (and related 1.8.x lineage); a crafted DNS response with a compressed pointer can cause infinite recursion or long pointer chains, leading to stack exhaustion and denial of service. The issue originates in dns.c when validating DNS responses. R...

CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

UBUNTU-CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

CVE-2018-20103

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

ALPINE-CVE-2018-14629

A denial of service vulnerability was discovered in Samba's LDAP server before versions 4.7.12, 4.8.7, and 4.9.3. A CNAME loop could lead to infinite recursion in the server. An unprivileged local attacker could create such an entry, leading to denial of service...