EUVD-2025-22682

Malicious code in bioql PyPI...

EUVD-2022-6561

Malicious code in bioql PyPI...

EUVD-2022-6434

Malicious code in bioql PyPI...

EUVD-2024-2665

Malicious code in bioql PyPI...

EUVD-2022-51241

Malicious code in bioql PyPI...

EUVD-2023-1077

Malicious code in bioql PyPI...

Express XSS Sanitizer 安全漏洞

Express XSS Sanitizer is used by AhmedAdelFahim Individual Developer to clean up user input data in req.body, req.query, req.headers, and req.params to prevent cross-site scripting XSS attacks. A security vulnerability exists in Express XSS Sanitizer 2.0.0 and prior versions, which stems from an...

ROS-20250905-11

A vulnerability in the MuPDF PDF viewer is related to infinite recursion in the mutool utility clean. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

Linux Distros Unpatched Vulnerability : CVE-2025-9714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uncontrolled recursion in XPath evaluation in libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted...

SUSE CVE-2025-38690

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent infinite recursion If the buf + offset is not aligned to XECAHELINEBYTES we fallback to using a bounce buffer. However the bounce buffer here is allocated on the stack, and the only alignment requirement...

UBUNTU-CVE-2025-38690

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: prevent infinite recursion If the buf + offset is not aligned to XECAHELINEBYTES we fallback to using a bounce buffer. However the bounce buffer here is allocated on the stack, and the only alignment requirement...

CVE-2025-38690

The CVE-2025-38690 entry applies to the Linux kernel code path drm/xe/migrate. The vulnerability concerns incorrect handling of alignment for a bounce buffer when buf+offset is not aligned to XE_CACHELINE_BYTES, which could lead to recursive retries and a stack/recursion risk. The root cause desc...

atm: clip: Fix infinite recursive call of clip_push().

...

PT-2025-35963

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the drm/xe/migrate component that could lead to infinite recursion and a potential kernel panic. This occurs when handling memory alignment duri...

An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.

...

Linux Distros Unpatched Vulnerability : CVE-2024-4568

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Xpdf 4.05 and earlier, a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow. CVE-2024-4568 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2022-47662

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GPAC MP4Box 2.1-DEV-rev649-ga8f438d20 has a segment fault /stack overflow due to infinite recursion in MediaGetSample isomedia/media.c:662 CVE-2022-47662 Note...

Linux Distros Unpatched Vulnerability : CVE-2017-13756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In The Sleuth Kit TSK 4.4.2, opening a crafted disk image triggers infinite recursion in dosloadexttable in tsk/vs/dos.c in libtskvs.a, as demonstrated by mmls...

Linux Distros Unpatched Vulnerability : CVE-2022-48545

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02. CVE-2022-48545 Note that Nessus relies on the presence of the packag...

Linux Distros Unpatched Vulnerability : CVE-2019-13103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitel...