Vulnerabilities > Loop with Unreachable Exit Condition ('Infinite Loop')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-15 | CVE-2017-12852 | Infinite Loop vulnerability in Numpy The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. | 7.5 |
| 2017-08-07 | CVE-2015-7850 | Infinite Loop vulnerability in multiple products ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file. | 6.5 |
| 2017-07-31 | CVE-2017-11118 | Infinite Loop vulnerability in Openexif Project Openexif 2.1.4 The ExifImageFile::readImage function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted jpg file. | 5.5 |
| 2017-07-27 | CVE-2017-9258 | Infinite Loop vulnerability in Surina Soundtouch 1.9.2 The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted wav file. | 5.5 |
| 2017-07-25 | CVE-2017-11627 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11626 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11625 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-11624 | Infinite Loop vulnerability in Qpdf Project Qpdf 6.0.0 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." | 5.5 |
| 2017-07-25 | CVE-2017-9233 | Infinite Loop vulnerability in multiple products XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD. | 7.5 |
| 2017-07-22 | CVE-2017-11523 | Infinite Loop vulnerability in Imagemagick The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop) via a crafted file, because the end-of-file condition is not considered. | 6.5 |