Lucene search
K

11238 matches found

EUVD
EUVD
added 2026/07/02 4:6 p.m.7 views

EUVD-2026-41413

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Erlang OTP ssh sshsftpd module allows an authenticated SFTP user to render an SFTP channel permanently unresponsive. The handledata/4 function in sshsftpd contains a catch-all clause that accepts channel data of any type. When...

5.3CVSS6AI score0.0033EPSS
Exploits0References5
CVE
CVE
added 2026/07/02 4:6 p.m.15 views

CVE-2026-54886

The vulnerability CVE-2026-54886 affects Erlang/OTP's SSH server side (ssh_sftpd) and allows an authenticated SFTP client to trigger an infinite loop on a channel by sending SSH_MSG_CHANNEL_EXTENDED_DATA. The handle_data/4 clause tail-calls itself when a non-zero data_type_code arrives with an em...

5.3CVSS6AI score0.0033EPSS
Exploits0References5Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/07/02 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-55595

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, when providing invalid...

4.7CVSS5.9AI score0.0009EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/01 10:20 p.m.5 views

CVE-2026-55595

A flaw was found in ImageMagick, a free and open-source software used for editing and manipulating digital images. This vulnerability allows an attacker to trigger an infinite loop by providing invalid arguments to the connected-components option. Successful exploitation of this flaw can lead to ...

4.7CVSS5.6AI score0.0009EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/07/01 9:21 p.m.9 views

Important: Red Hat Security Advisory: dnsmasq security update

An update for dnsmasq is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.3AI score0.07237EPSS
Exploits3References6
RedHat Linux
RedHat Linux
added 2026/07/01 9:21 p.m.11 views

dnsmasq: NSEC bitmap parsing infinite loop

A denial of service vulnerability was discovered in dnsmasq's DNSSEC validation. When parsing NSEC and NSEC3 bitmap records, the window iteration logic fails to account for the 2-byte window header when advancing through the bitmap data. A specially crafted DNS response with a zero-length bitmap...

7.5CVSS6.1AI score0.07237EPSS
Exploits0References5
NVD
NVD
added 2026/07/01 7:16 p.m.5 views

CVE-2026-55595

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, when providing invalid arguments to the connected-components option an infinite loop will occur. This issue has been fixed in versions 6.9.13-51 and 7.1.2-26...

4.7CVSS0.0009EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/01 7:0 p.m.38 views

CVE-2026-55595 ImageMagick: Infinite Loop in connected-components when providing invalid arguments

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, when providing invalid arguments to the connected-components option an infinite loop will occur. This issue has been fixed in versions 6.9.13-51 and 7.1.2-26...

4.7CVSS0.0009EPSS
Exploits0References1
CVE
CVE
added 2026/07/01 7:0 p.m.56 views

CVE-2026-55595

ImageMagick is affected by a vulnerability in the connected-components option. Prior to versions 6.9.13-51 and 7.1.2-26, providing invalid arguments to this option can cause an infinite loop (local attack vector, high availability impact) as described in the CVE notes. The issue has been fixed in...

4.7CVSS5.8AI score0.0009EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.4 views

PT-2026-54855

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.13-51 ImageMagick versions prior to 7.1.2-26 Description An infinite loop occurs when invalid arguments are provided to the connected-components option. Recommendations Update to version 6.9.13-51. Update to...

4.7CVSS6AI score0.0009EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2026/06/29 10:3 a.m.7 views

ImageMagick: ImageMagick: Denial of Service via crafted MIFF file

A flaw was found in ImageMagick. A remote attacker could provide a specially crafted MIFF Magick Image File Format file, which, due to a missing check in the MIFF decoder, would lead to an infinite loop. This vulnerability results in CPU exhaustion, causing a Denial of Service DoS for the affecte...

7.5CVSS5.8AI score0.01849EPSS
Exploits4References5
EUVD
EUVD
added 2026/06/26 9:53 p.m.15 views

EUVD-2026-31686

Hackney has an infinite loop on non-token byte at start of an Alt-Svc entry...

8.7CVSS5.8AI score0.00703EPSS
Exploits1References5
OSV
OSV
added 2026/06/26 8:17 p.m.4 views

DEBIAN-CVE-2026-53312

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.5CVSS5.9AI score0.00112EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/26 7:41 p.m.7 views

EUVD-2026-39847

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.9AI score0.00112EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/26 2:14 a.m.7 views

SUSE CVE-2026-52967

In the Linux kernel, the following vulnerability has been resolved: smb/client: fix possible infinite loop and oob read in symlinkdata On 32-bit architectures, the infinite loop is as follows: len = p-ErrorDataLength == 0xfffffff8 u8 next = p-ErrorContextData + len next == p On 32-bit...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.13 views

PT-2026-52951

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RISC-V IOMMU invalidation path. Because RISC-V supports sign extended page tables, a gather-end value of ULONG MAX can cause an infinite loop due to an integer...

5.5CVSS6AI score0.00112EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.6 views

SUSE SLES15 Security Update : terraform-provider-local, terraform-provider-null (SUSE-SU-2026:2484-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:2484-1 advisory. This update for terraform-provider-local, terraform-provider-null fixes the following issue - CVE-2026-33814: golang.org/x/net/http2: infini...

7.5CVSS5.9AI score0.00781EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 11:24 p.m.7 views

CVE-2026-52967

A flaw was found in the Linux kernel's Server Message Block SMB client. This vulnerability, located in the symlinkdata function, could allow a malicious SMB server to trigger an infinite loop, leading to a Denial of Service DoS condition. Additionally, an out-of-bounds read could occur, potential...

8.1CVSS5.8AI score0.00398EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/06/25 10:21 p.m.8 views

golang.org/x/crypto vulnerable to infinite loop on large channel writes

When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation...

9.1CVSS6AI score0.00466EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/06/25 9:48 p.m.11 views

EUVD-2026-36180

ImageMagick has an Infinite Loop in subimage-search with crafted image...

4.7CVSS5.8AI score0.00092EPSS
Exploits0References3
Rows per page
Query Builder