Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,750
Maven
5,000+
npm
4,355
NuGet
765
pip
4,115
Pub
12
RubyGems
960
Rust
1,069
Swift
45
Unreviewed advisories
All unreviewed
5,000+

335 advisories

Loading
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and... Moderate Unreviewed
CVE-2024-11097 was published Nov 12, 2024
A vulnerability has been found in GPAC 2.5-DEV-rev228-g11067ea92-master and classified as... Moderate Unreviewed
CVE-2024-6061 was published Jun 17, 2024
7-Zip CopyCoder Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows remote... Moderate Unreviewed
CVE-2024-11612 was published Nov 22, 2024
Designate does not enforce the DNS protocol limit concerning record set sizes Moderate
CVE-2015-5694 was published for designate (pip) May 24, 2022
Bouncy Castle crafted signature and public key can be used to trigger an infinite loop Moderate
CVE-2024-30172 was published for BouncyCastle (Maven) May 14, 2024
levpachmanov amita-seal
Credited to levpachmanov and amita-seal
Infinite loop in github.com/gomarkdown/markdown Moderate
CVE-2024-44337 was published for github.com/gomarkdown/markdown (Go) Oct 15, 2024
In the Linux kernel, the following vulnerability has been resolved: virtio_net: Do not send RSS... Moderate Unreviewed
CVE-2024-35981 was published May 20, 2024
Infinite loop and Blind SSRF found inside the Webfinger mechanism in @fedify/fedify Moderate
CVE-2025-23221 was published for @fedify/fedify (npm) Jan 21, 2025
nnfrog
Credited to nnfrog
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.0 prior to... Moderate Unreviewed
CVE-2025-0290 was published Jan 28, 2025
In the Linux kernel, the following vulnerability has been resolved: crypto: qcom-rng - fix... Moderate Unreviewed
CVE-2022-48630 was published Mar 5, 2024
Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in Arm Ltd Bifrost GPU... Moderate Unreviewed
CVE-2024-6790 was published Feb 3, 2025
In NGINX Unit before version 1.34.2 with the Java Language Module in use, undisclosed requests... Moderate Unreviewed
CVE-2025-1695 was published Mar 4, 2025
In the Linux kernel, the following vulnerability has been resolved: nvmet: Fix crash when a... Moderate Unreviewed
CVE-2025-21850 was published Mar 12, 2025
In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix a crash if -... Moderate Unreviewed
CVE-2021-47159 was published Mar 25, 2024
In the Linux kernel, the following vulnerability has been resolved: f2fs: avoid infinite loop to... Moderate Unreviewed
CVE-2022-49317 was published Mar 14, 2025
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize... Moderate Unreviewed
CVE-2023-52635 was published Apr 2, 2024
In the Linux kernel, the following vulnerability has been resolved: netdevsim: avoid potential... Moderate Unreviewed
CVE-2024-26681 was published Apr 2, 2024
In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix task hung while... Moderate Unreviewed
CVE-2024-26780 was published Apr 4, 2024
Silicon Labs Gecko OS DNS Response Processing Infinite Loop Denial-of-Service Vulnerability. This... Moderate Unreviewed
CVE-2025-2838 was published Mar 27, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: add error checking to... Moderate Unreviewed
CVE-2021-47406 was published May 21, 2024
mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU... Moderate Unreviewed
CVE-2004-0748 was published Apr 29, 2022
ts-asn1-der has Incorrect DER Encoding of Numbers Leading to Denial of Service and Incorrect Value Representation Moderate
CVE-2025-32029 was published for @apeleghq/asn1-der (npm) Apr 7, 2025
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential... Moderate Unreviewed
CVE-2024-27032 was published May 1, 2024
smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows... Moderate Unreviewed
CVE-2009-2906 was published May 2, 2022
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a... Moderate Unreviewed
CVE-2011-1002 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database