Vulnerabilities > Loop with Unreachable Exit Condition ('Infinite Loop')

DATE CVE VULNERABILITY TITLE RISK
2024-09-04 CVE-2024-45692 Infinite Loop vulnerability in multiple products
Webmin before 2.202 and Virtualmin before 7.20.2 allow a network traffic loop via spoofed UDP packets on port 10000.
network
low complexity
virtualmin webmin CWE-835
7.5
2024-09-04 CVE-2024-45395 Infinite Loop vulnerability in Sigstore Sigstore-Go
sigstore-go, a Go library for Sigstore signing and verification, is susceptible to a denial of service attack in versions prior to 0.6.1 when a verifier is provided a maliciously crafted Sigstore Bundle containing large amounts of verifiable data, in the form of signed transparency log entries, RFC 3161 timestamps, and attestation subjects.
network
low complexity
sigstore CWE-835
7.5
2024-08-17 CVE-2024-43828 Infinite Loop vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when replaying fast_commit When doing fast_commit replay an infinite loop may occur due to an uninitialized extent_status struct.
local
low complexity
linux CWE-835
5.5
2024-08-15 CVE-2024-43366 Infinite Loop vulnerability in Matter-Labs Zkvyper
zkvyper is a Vyper compiler.
network
low complexity
matter-labs CWE-835
critical
9.1
2024-08-07 CVE-2024-42240 Infinite Loop vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in #DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF flag set then entry_SYSENTER_compat() uses CLEAR_BRANCH_HISTORY and calls the clear_bhb_loop() before the TF flag is cleared.
local
low complexity
linux CWE-835
5.5
2024-08-07 CVE-2024-42246 Infinite Loop vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket When using a BPF program on kernel_connect(), the call can return -EPERM.
local
low complexity
linux CWE-835
5.5
2024-08-06 CVE-2024-42358 Infinite Loop vulnerability in Msweet Pdfio
PDFio is a simple C library for reading and writing PDF files.
local
low complexity
msweet CWE-835
5.5
2024-07-29 CVE-2024-41088 Infinite Loop vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: fix infinite loop when xmit fails When the mcp251xfd_start_xmit() function fails, the driver stops processing messages, and the interrupt routine does not return, running indefinitely even after killing the running application. Error messages: [ 441.298819] mcp251xfd spi2.0 can0: ERROR in mcp251xfd_start_xmit: -16 [ 441.306498] mcp251xfd spi2.0 can0: Transmit Event FIFO buffer not empty.
local
low complexity
linux CWE-835
5.5
2024-07-23 CVE-2024-40060 Infinite Loop vulnerability in Wcharczuk Go-Chart
go-chart v2.1.1 was discovered to contain an infinite loop via the drawCanvas() function.
network
low complexity
wcharczuk CWE-835
7.5
2024-07-16 CVE-2022-48840 Infinite Loop vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: iavf: Fix hang during reboot/shutdown Recent commit 974578017fc1 ("iavf: Add waiting so the port is initialized in remove") adds a wait-loop at the beginning of iavf_remove() to ensure that port initialization is finished prior unregistering net device.
local
low complexity
linux CWE-835
5.5