Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,122
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,020
Swift
39
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in... Moderate Unreviewed
CVE-2021-3508 was published May 24, 2022
Unbound before 1.9.5 allows an infinite loop via a compressed name in dname_pkt_copy. High Unreviewed
CVE-2019-25040 was published May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All... High Unreviewed
CVE-2021-25664 was published May 24, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All... High Unreviewed
CVE-2021-25663 was published May 24, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software... High Unreviewed
CVE-2021-1252 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a... Moderate Unreviewed
CVE-2020-36310 was published May 24, 2022
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 where an... Moderate Unreviewed
CVE-2021-22197 was published May 24, 2022
A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in... Moderate Unreviewed
CVE-2021-3416 was published May 24, 2022
StackStorm st2 Infinite Loop Condition High
CVE-2021-28667 was published for st2client (pip) May 24, 2022 withdrawn
Modem will enter into busy mode in an infinite loop while parsing histogram dimension due to... Moderate Unreviewed
CVE-2020-11186 was published May 24, 2022
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 (All versions). An attacker with... Moderate Unreviewed
CVE-2021-25673 was published May 24, 2022
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom... High Unreviewed
CVE-2021-27918 was published May 24, 2022
A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device... Moderate Unreviewed
CVE-2021-20255 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... Moderate Unreviewed
CVE-2020-27618 was published May 24, 2022
Hirschmann OS2, RSP, and RSPE devices before HiOS 08.3.00 allow a denial of service. An... Moderate Unreviewed
CVE-2020-9307 was published May 24, 2022
In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates... Moderate Unreviewed
CVE-2021-22161 was published May 24, 2022
picoquic (before 3rd of July 2020) allows attackers to cause a denial of service (infinite loop)... High Unreviewed
CVE-2020-24944 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an infinite loop in slapd with the... High Unreviewed
CVE-2020-36227 was published May 24, 2022
In an EVPN/VXLAN scenario, if an IRB interface with a virtual gateway address (VGA) is configured... Moderate Unreviewed
CVE-2021-0221 was published May 24, 2022
On Tenda AC1200 (Model AC6) 15.03.06.51_multi devices, a large HTTP POST request sent to the... High Unreviewed
CVE-2020-28095 was published May 24, 2022
GNOME gdk-pixbuf (aka GdkPixbuf) before 2.42.2 allows a denial of service (infinite loop) in lzw... Moderate Unreviewed
CVE-2020-29385 was published May 24, 2022
An issue was discovered in picoTCP and picoTCP-NG through 1.7.0. When an unsupported TCP option... High Unreviewed
CVE-2020-24337 was published May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack... High Unreviewed
CVE-2020-13984 was published May 24, 2022
An issue was discovered in Contiki through 3.0. An infinite loop exists in the uIP TCP/IP stack... High Unreviewed
CVE-2020-13986 was published May 24, 2022
hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer... Moderate Unreviewed
CVE-2020-28916 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database