Lucene search
K

11174 matches found

OSV
OSV
added 2026/05/17 8:17 p.m.7 views

SUSE-SU-2026:21804-1 Security update for go1.26

This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: "go tool pack" does...

7.5CVSS6AI score0.00813EPSS
Exploits0References25
OSV
OSV
added 2026/05/16 1:15 a.m.6 views

CLSA-2026-1778894153 libarchive: Fix of CVE-2025-60753

CVE-2025-60753: denial of service in bsdtar -s substitution when the regular expression matches a zero-length string, causing an infinite loop in applysubstitution...

5.5CVSS5.8AI score0.00139EPSS
Exploits1References1
OSV
OSV
added 2026/05/16 1:2 a.m.8 views

CLSA-2026-1778893359 libarchive: Fix of CVE-2025-60753

CVE-2025-60753: denial of service in bsdtar -s substitution when the regular expression matches a zero-length string, causing an infinite loop in applysubstitution...

5.5CVSS5.8AI score0.00139EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.10 views

SUSE SLED15 / SLES15 Security Update : mozjs60 (SUSE-SU-2026:1817-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1817-1 advisory. This update for mozjs60 fixes the following issues - CVE-2026-32776: libexpat: NULL pointer dereference when...

5.5CVSS7.1AI score0.00216EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.7 views

SUSE SLES15 Security Update : python-Pillow (SUSE-SU-2026:1842-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:1842-1 advisory. This update for python-Pillow fixes the following issue - CVE-2026-42310: infinite loop and resource exhaustion when processing specially crafted PDFs...

5.5CVSS7.1AI score0.00126EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/15 2:12 p.m.8 views

CVE-2026-6210

A flaw was found in Qt SVG. A remote attacker could exploit a vulnerability by providing a specially crafted SVG image. This issue arises from incorrect handling of SVG marker references, where the software misinterprets data types, leading to memory access errors and an infinite loop. This can...

8.7CVSS5.7AI score0.00279EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2026/05/15 9:19 a.m.9 views

Security update for mozjs115

This update for mozjs115 fixes the following issues CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259728. CVE-2026-32777: libexpat: denial of service due to infinite loop in DTD content parsing bsc125971...

8.7CVSS5.8AI score0.00216EPSS
Exploits1References12
OSV
OSV
added 2026/05/14 10:33 p.m.7 views

SUSE-SU-2026:1861-1 Security update for go1.26

This update for go1.26 fixes the following issues Security issues: - CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. - CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. - CVE-2026-39817: cmd/go: 'go tool pack' does...

7.5CVSS5.8AI score0.00813EPSS
Exploits0References25
OSV
OSV
added 2026/05/14 8:40 a.m.12 views

BIT-DOTNET-SDK-2026-42899 ASP.NET Core Denial of Service Vulnerability

Loop with unreachable exit condition 'infinite loop' in ASP.NET Core allows an unauthorized attacker to deny service over a network...

7.5CVSS5.8AI score0.0243EPSS
Exploits0References2
OSV
OSV
added 2026/05/14 8:40 a.m.8 views

BIT-DOTNET-2026-42899 ASP.NET Core Denial of Service Vulnerability

Loop with unreachable exit condition 'infinite loop' in ASP.NET Core allows an unauthorized attacker to deny service over a network...

7.5CVSS5.8AI score0.0243EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/14 3:32 a.m.13 views

OpenStack Ironic: Pre-Validation Checksum Calculation allows Denial of Service (DoS) via Infinite Block Devices

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

6.5CVSS5.8AI score0.00466EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/05/14 3:32 a.m.5 views

GHSA-4G73-W726-53H3 OpenStack Ironic: Pre-Validation Checksum Calculation allows Denial of Service (DoS) via Infinite Block Devices

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

4.3CVSS5.8AI score0.00466EPSS
Exploits1References5
NVD
NVD
added 2026/05/14 2:17 a.m.14 views

CVE-2026-44919

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

6.5CVSS0.00466EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2026/05/14 2:17 a.m.9 views

CVE-2026-44919

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

4.3CVSS5.8AI score0.00466EPSS
Exploits1References3
OSV
OSV
added 2026/05/14 2:17 a.m.6 views

UBUNTU-CVE-2026-44919

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

6.5CVSS5.8AI score0.00466EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-44919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

6.5CVSS5.9AI score0.00466EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.10 views

OpenStack Ironic 安全漏洞

OpenStack Ironic is an integrated OpenStack application developed under the OpenStack open source framework. It is used to configure bare machines rather than virtual machines. OpenStack Ironic versions 35.x and earlier contained a security vulnerability caused by an infinite loop in the...

4.3CVSS5.8AI score0.00466EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/05/14 12:0 a.m.6 views

CVE-2026-44919

In OpenStack Ironic through 35.x before a3f6d73, during image handling, an infinite loop in checksum calculations can occur via the file:///dev/zero URL...

4.3CVSS5.8AI score0.00466EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/14 12:0 a.m.14 views

PT-2026-40843

Name of the Vulnerable Software and Affected Versions OpenStack Ironic versions prior to a3f6d73 Description An infinite loop can occur during image handling when checksum calculations are performed using the 'file:///dev/zero' URL. Recommendations Update to version a3f6d73 or later...

4.3CVSS5.8AI score0.00466EPSS
Exploits1References9
Amazon
Amazon
added 2026/05/14 12:0 a.m.13 views

Medium: qemu

Issue Overview: hcd-ohci: infinite loop NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/129922c2bc398b656a9180150e667f98fdf0d402 v11.0.0-rc1 CVE-2026-3890 virtio-scsi request size mismatch NOTE: Fixed by:...

7.1AI score
Exploits0
Rows per page
Query Builder