3 matches found
CVE-2026-59877
Summary: The CVE affects protobufjs, where the .proto parser could enter an infinite loop. Affected component: protobufjs (parsing of protobuf definitions to JS functions). Root cause: while parsing option declarations, the parser advances through tokens until an '=' is found without checking for...
CVE-2024-58239
In the Linux kernel, the following vulnerability has been resolved: tls: stop recv if initial processrxlist gave us non-DATA If we have a non-DATA record on the rxlist and another record of the same type still on the queue, we will end up merging them: - processrxlist copies the non-DATA record -...
security flaw
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service infinite loop via streams that end prematurely, as demonstrated using the 1 CCITTFaxDecode and 2 DCTDecode streams, aka "Infinite CPU spins."...