Vulnerabilities > Loop with Unreachable Exit Condition ('Infinite Loop')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-12 | CVE-2017-13195 | Infinite Loop vulnerability in Google Android In the ihevcd_parse_sps function of ihevcd_parse_headers.c, several parameter values could be negative which could lead to negative indexes which could lead to an infinite loop. | 7.5 |
| 2018-01-12 | CVE-2017-13193 | Infinite Loop vulnerability in Google Android In ihevcd_decode.c there is a possible infinite loop due to bytes for an sps of unsupported resolution resulting in the same sps being fed in over and over. | 7.5 |
| 2018-01-12 | CVE-2017-13192 | Infinite Loop vulnerability in Google Android In the ihevcd_parse_slice_header function of ihevcd_parse_slice_header.c a slice address of zero after the first slice could result in an infinite loop. | 7.5 |
| 2018-01-12 | CVE-2017-13191 | Infinite Loop vulnerability in Google Android In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete frame error. | 7.5 |
| 2018-01-12 | CVE-2018-5650 | Infinite Loop vulnerability in Long Range ZIP Project Long Range ZIP 0.631 In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and application hang in the unzip_match function in runzip.c. | 5.5 |
| 2018-01-05 | CVE-2018-5253 | Infinite Loop vulnerability in Axiosys Bento4 1.5.1.0 The AP4_FtypAtom class in Core/Ap4FtypAtom.cpp in Bento4 1.5.1.0 has an Infinite loop via a crafted MP4 file that triggers size mishandling. | 7.8 |
| 2017-12-14 | CVE-2017-17681 | Infinite Loop vulnerability in multiple products In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted psd image file. | 6.5 |
| 2017-11-28 | CVE-2017-17044 | Infinite Loop vulnerability in XEN An issue was discovered in Xen through 4.9.x allowing HVM guest OS users to cause a denial of service (infinite loop and host OS hang) by leveraging the mishandling of Populate on Demand (PoD) errors. | 6.5 |
| 2017-11-25 | CVE-2017-16944 | Infinite Loop vulnerability in multiple products The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service (infinite loop and stack exhaustion) via vectors involving BDAT commands and an improper check for a '.' character signifying the end of the content, related to the bdat_getc function. | 7.5 |
| 2017-11-23 | CVE-2017-16932 | Infinite Loop vulnerability in Xmlsoft Libxml2 parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities. | 7.5 |