Vulnerabilities > Excessive Iteration
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-01 | CVE-2019-9547 | Excessive Iteration vulnerability in Spdk Storage Performance Development KIT In Storage Performance Development Kit (SPDK) before 19.01, a malicious vhost client (i.e., virtual machine) could carefully construct a circular descriptor chain that would result in a partial denial of service in the SPDK vhost target, because the vhost target did not properly detect such chains. | 5.3 |
| 2018-10-25 | CVE-2018-18651 | Excessive Iteration vulnerability in Xpdfreader Xpdf 4.00 An issue was discovered in Xpdf 4.00. | 5.5 |
| 2018-07-19 | CVE-2018-14342 | Excessive Iteration vulnerability in multiple products In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. | 7.5 |
| 2018-06-06 | CVE-2018-11813 | Excessive Iteration vulnerability in IJG Libjpeg 9C libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF. | 7.5 |
| 2018-05-28 | CVE-2018-11507 | Excessive Iteration vulnerability in Flif 0.3 An issue was discovered in Free Lossless Image Format (FLIF) 0.3. | 6.5 |
| 2018-04-04 | CVE-2017-13279 | Excessive Iteration vulnerability in Google Android In M3UParser::parse of M3UParser.cpp, there is a memory resource exhaustion due to a large loop of pushing items into a vector. | 5.5 |
| 2018-04-04 | CVE-2018-9261 | Excessive Iteration vulnerability in multiple products In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buffer overflow. | 7.5 |
| 2018-03-30 | CVE-2018-9133 | Excessive Iteration vulnerability in multiple products ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. | 6.5 |
| 2018-02-23 | CVE-2018-7323 | Excessive Iteration vulnerability in multiple products In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing. | 7.5 |
| 2018-02-23 | CVE-2018-7321 | Excessive Iteration vulnerability in Wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type. | 7.5 |