Vulnerabilities > Loop with Unreachable Exit Condition ('Infinite Loop')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-27 | CVE-2017-9258 | Infinite Loop vulnerability in Surina Soundtouch 1.9.2 The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted wav file. | 5.5 |
| 2017-07-25 | CVE-2017-11627 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11626 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11625 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11624 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-9233 | Infinite Loop vulnerability in multiple products XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD. | 7.5 |
| 2017-07-22 | CVE-2017-11523 | Infinite Loop vulnerability in Imagemagick The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop) via a crafted file, because the end-of-file condition is not considered. | 6.5 |
| 2017-07-20 | CVE-2017-11478 | Infinite Loop vulnerability in Imagemagick The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed DJVU image. | 6.5 |
| 2017-07-19 | CVE-2017-11446 | Infinite Loop vulnerability in Imagemagick 7.0.61 The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file. | 6.5 |
| 2017-07-18 | CVE-2017-11410 | Infinite Loop vulnerability in Wireshark In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. | 7.5 |