DEBIAN-CVE-2021-46828

In libtirpc before 1.3.3rc1, remote attackers could exhaust the file descriptors of a process that uses libtirpc because idle TCP connections are mishandled. This can, in turn, lead to an svcrun infinite loop without accepting new connections...

SUSE-SU-2022:0860-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: Security issue fixed: - CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates bsc1196877. Non-security issues fixed: - Fix PAC pointer authentication in ARM. bsc1195856 - Pull libopenssl-11 when updating openssl-11 wit...

SUSE-SU-2022:14889-1 Security update for xerces-j2

This update for xerces-j2 fixes the following issues: - CVE-2022-23437: Fixed infinite loop within Apache XercesJ xml parser bsc1195108...

OPENSUSE-SU-2021:1566-1 Security update for wireshark

This update for wireshark fixes the following issues: - Update to Wireshark 3.4.10: - CVE-2021-39920: IPPUSB dissector crash bsc1192830. - CVE-2021-39921: Modbus dissector crash bsc1192830. - CVE-2021-39922: C12.22 dissector crash bsc1192830. - CVE-2021-39924: Bluetooth DHT dissector large loop...

OPENSUSE-SU-2021:3639-1 Security update for tinyxml

This update for tinyxml fixes the following issues: - CVE-2021-42260: Fixed an infinite loop for inputs containing the sequence 0xEF0x00 bsc1191576...

OPENSUSE-SU-2021:1118-1 Security update for wireshark

This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop bsc1186790. This update was imported from the SUSE:SLE-15:Update update project...

SUSE-SU-2021:1252-1 Security update for xen

This update for xen fixes the following issues: - CVE-2021-20257: xen: infinite loop issue in the e1000 NIC emulator bsc1182846. - CVE-2021-27379: Fixed an issue where entries in the IOMMU were not being updated under certain circumstances due to improper backport of XSA-321 XSA-366, bsc1182431...

SUSE SLES12 Security Update : xen (SUSE-SU-2021:1023-1)

This update for xen fixes the following issues : CVE-2021-3308: VUL-0: xen: IRQ vector leak on x86 bsc1181254, XSA-360 CVE-2021-28687: VUL-0: xen: HVM soft-reset crashes toolstack bsc1183072, XSA-368 CVE-2021-20257: VUL-0: xen: infinite loop issue in the e1000 NIC emulator bsc1182846...

SUSE-SU-2021:1023-1 Security update for xen

This update for xen fixes the following issues: - CVE-2021-3308: VUL-0: xen: IRQ vector leak on x86 bsc1181254, XSA-360 - CVE-2021-28687: VUL-0: xen: HVM soft-reset crashes toolstack bsc1183072, XSA-368 - CVE-2021-20257: VUL-0: xen: infinite loop issue in the e1000 NIC emulator bsc1182846 -...

OPENSUSE-SU-2020:2076-1 Security update for wireshark

This update for wireshark fixes the following issues: - wireshark was updated to 3.2.8: - CVE-2020-26575: Fixed an issue where FBZERO dissector was entering in infinite loop bsc1177406 - CVE-2020-28030: Fixed an issue where GQUIC dissector was crashing bsc1178291 Infinite memory allocation while...

OPENSUSE-SU-2020:1258-1 Security update for python3

This update for python3 fixes the following issues: - bsc1174091, CVE-2019-20907: avoiding possible infinite loop in specifically crafted tarball. This update was imported from the SUSE:SLE-15:Update update project...

CVE-2020-13807

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has circular reference mishandling that causes a loop...

PT-2019-15841 · Gnome +3 · Gnome Dia +3

Name of the Vulnerable Software and Affected Versions: GNOME Dia versions prior to 2019-11-27 Description: The issue occurs when GNOME Dia is launched with a filename argument that is not a valid codepoint in the current encoding, causing it to enter an endless loop and write text to stdout. If...

CVE-2019-3900

An infinite loop issue was found in the vhostnet kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handlerx. It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stal...

SUSE-SU-2018:1456-1 Security update for xen

This update for xen fixes the following issues: Security issues fixed: - CVE-2018-3639: Spectre V4 – Speculative Store Bypass aka 'Memory Disambiguation' bsc1092631 This feature can be controlled by the 'ssbd=on/off' commandline flag for the XEN hypervisor. - CVE-2018-10982: x86 vHPET interrupt...

CVE-2018-7321

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type...

SUSE-SU-2018:0456-1 Security update for quagga

This update for quagga fixes the security following issues: - The Quagga BGP daemon contained a bug in the ASPATH size calculation that could have been exploited to facilitate a remote denial-of-service attack via specially crafted BGP UPDATE messages. CVE-2017-16227, bsc1065641 - The Quagga BGP...

CVE-2017-14929

In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opFill, Gfx::doPatternFill, Gfx::doTilingPatternFill and Gfx::drawForm calls aka a Gfx.cc infinite loop, a different vulnerability than...

Fedora 25 : 2:qemu (2017-31b976672b)

CVE-2016-7907: net: imx: infinite loop bz 1381182 - CVE-2017-5525: audio: memory leakage in ac97 bz 1414110 - CVE-2017-5526: audio: memory leakage in es1370 bz 1414210 - CVE-2016-10155 watchdog: memory leakage in i6300esb bz 1415200 - CVE-2017-5552: virtio-gpu-3d: memory leakage bz 1415283 -...

CVE-2016-9372

In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. This was addressed in plugins/profinet/packet-pn-rtc-one.c by rejecting input with too many I/O objects...