12 matches found
ISC BIND 9 安全漏洞
ISC BIND 9 is a domain name system software developed by the ISC organization. ISC BIND 9 has a security vulnerability that stems from an unlimited recursive loop within the resolver’s state machine. This vulnerability could allow remote unauthenticated attackers to cause severe resource...
Linux Kernel Security Vulnerabilities
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the nftchainvalidate function potentially entering a recursive loop, which may lead to a CPU soft...
EUVD-2025-0125
Malicious code in bioql PyPI...
Excessive Platform Resource Consumption within a Loop when unmarshalling Compose file having recursive loop
...
GO-2025-3412 Excessive resource consumption when unmarshalling Compose file with recursive loop in github.com/compose-spec/compose-go/v2
Excessive resource consumption when unmarshalling Compose file with recursive loop in github.com/compose-spec/compose-go/v2...
USN-6958-1 libcroco vulnerabilities
It was discovered that Libcroco was incorrectly accessing data structures when reading bytes from memory, which could cause a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. CVE-2017-7960 It was discovered th...
SUSE CVE-2023-52735
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...
DEBIAN-CVE-2023-52735
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...
CVE-2023-52735 bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself sockmap proto callbacks should never call themselves by design. Protect against bugs like 1 and break out of the recursive loop to avoid a stack overflow in favor of...
Denial Of Service (DoS)
typo3/cms is vulnerable to denial of service. The vulnerability exists when requesting an invalid or non-existing resources via HTTP which invokes the page error handler which again could retrieve the invalid or non-existing resources causing a recursive loop which may crash the server...
Denial Of Service (DoS) Through Embedded C Library
The nokogiri gem is using libxml2 which is vulnerable to CVE-2016-3627. CVE-2016-3627 is a denial of service DoS vulnerability. It is possible because the xmlStringGetNodeList and xmlParserEntityCheck functions fail to detect a recursive loop when it is used in recovery mode, causing stack...
libxml2: stack exhaustion while parsing xml files in recovery mode
Missing recursive loop detection checks were found in the xmlParserEntityCheck and xmlStringGetNodeList functions of libxml2, causing application using the library to crash by stack exhaustion while building the associated data. An attacker able to send XML data to be parsed in recovery mode coul...