291 matches found
The vulnerability of the GNOME graphical interface library libsoup, related to the execution of a loop with an unreachable exit condition, allows a hacker to cause a service failure.
The vulnerability of the GNOME graphical interface library libsoup is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
CVE-2025-32399
An Unchecked Input for Loop Condition in RT-Labs P-Net version 1.0.1 or earlier allows an attacker to cause IO devices that use the library to enter an infinite loop by sending a malicious RPC packet...
CVE-2025-0926
Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has found that it is possible for a non-admin user to remove system files causing a boot loop by redirecting a file deletion when recording video. Axis has released a patched version for the highlighted flaw. Please refer to the Ax...
Security Bulletin: Vulnerabilities in dependencies affect IBM Voice Gateway
Summary Security Vulnerabilities in dependencies affect IBM Voice Gateway. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2025-24970 DESCRIPTION: Netty, an asynchronous, event-driven network application framework, has a vulnerability starting in version 4.1.91.Final and...
The vulnerability of RDMA/rxe components of the Linux operating system allows a hacker to trigger a service failure.
The vulnerability of RDMA/rxe components of the Linux operating system is related to the execution of a loop with an unreachable exit condition in the function rxerequester. Exploiting this vulnerability can allow a attacker to cause a service failure...
RLSA-2024:9559 Important: libsoup security update
The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: infinite loop while reading websocket data CVE-2024-52532 libsoup: HTTP request smuggling via stripping null bytes from the ends of header names CVE-2024-52530 For more details about the security...
Security Bulletin: IBM Sterling Control Center is vulnerable to Apache Commons Compress (CVE-2024-26308, CVE-2024-25710)
Summary Apache Commons Compress jar vulnerabilities are impacting IBM Sterling Control Center v6.3.1 and v6.2.1. Vulnerability Details CVEID:CVE-2024-26308 DESCRIPTION: Allocation of Resources Without Limits or Throttling vulnerability in Apache Commons Compress.This issue affects Apache Commons...
CVE-2025-27497 OpenDJ Denial of Service (Dos) using alias loop
OpenDJ is an LDAPv3 compliant directory service. OpenDJ prior to 4.9.3 contains a denial-of-service DoS vulnerability that causes the server to become unresponsive to all LDAP requests without crashing or restarting. This issue occurs when an alias loop exists in the LDAP database. If an ldapsear...
Linux Distros Unpatched Vulnerability : CVE-2020-14040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The x/text package before 0.3.3 for Go has a vulnerability in encoding/unicode that could lead to the UTF-16 decoder entering an infinite loop, causing the...
CVE-2025-27104
vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single expression is possible in the iterator target of a for loop. While the iterator expression cannot produce multiple writes, it can consume side effects produced in the loop body e.g. read a storage variable...
Insufficient Control Flow Management
Overview vyper is a Pythonic Smart Contract Language for the EVM. Affected versions of this package are vulnerable to Insufficient Control Flow Management due to the evaluation of iterator expressions in the loop body that can consume side effects from the loop iterations. An attacker can...
Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45233)
The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45233 advisory. - EDK2's Network Package is susceptible to an infinite lop vulnerability when parsing a PadN option i...
CVE-2024-6790
Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a non-privileged user process to make valid GPU memory processing operations, including via WebGL o...
CVE-2024-6790
Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a non-privileged user process to make valid GPU memory processing operations, including via WebGL o...
CVE-2024-6790 Mali GPU Kernel Driver can cause the whole system to become unresponsive
Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a non-privileged user process to make valid GPU memory processing operations, including via WebGL o...
CVE-2024-6790 Mali GPU Kernel Driver can cause the whole system to become unresponsive
Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a non-privileged user process to make valid GPU memory processing operations, including via WebGL o...
CVE-2024-6790
The CVE-2024-6790 issue is a Loop with Unreachable Exit Condition affecting Arm Mali GPU Kernel Drivers: Bifrost (r46p0–r49p0, r50p0–r51p0), Valhall (same ranges), and Arm 5th Gen GPU Architecture (same ranges). A non-privileged process can perform valid GPU memory operations (including via WebGL...
The vulnerability of the clk component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the clk component in the Linux operating system’s kernel is related to an infinite loop. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2024-49363
Misskey FileServerService (media proxy) in version 2024.10.1 and earlier is vulnerable: proxyHandler does not verify that incoming requests come from a proxy, enabling a self-propagating reflected/amplified DDoS via nested proxy requests ending in a redirect to another nested proxy. This can caus...
The vulnerability of the Comment module in the Drupal CMS system allows a hacker to trigger a service failure.
The vulnerability of the Comment module in the Drupal CMS system relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...