Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,869
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,119
NuGet
735
pip
3,941
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20996 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20997 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20998 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20999 was published Mar 24, 2023
This vulnerability allows remote attackers to create a denial-of-service condition on affected... High Unreviewed
CVE-2022-37013 was published Mar 29, 2023
Missing Release of Memory after Effective Lifetime in Apache Tika Moderate
CVE-2020-9489 was published for org.apache.tika:tika (Maven) May 7, 2021
tdunlap607
In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates... Moderate Unreviewed
CVE-2021-22161 was published May 24, 2022
In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to... Moderate Unreviewed
CVE-2019-20907 was published May 24, 2022
An infinite loop vulnerability exists in Gpac 1.0.1 in gf_get_bit_size. Moderate Unreviewed
CVE-2021-45297 was published Dec 22, 2021
GPAC version before commit 71460d72ec07df766dab0a4d52687529f3efcf0a (version v1.0.1 onwards)... Moderate Unreviewed
CVE-2021-40592 was published Jun 9, 2022
Inf loop in GitHub repository gpac/gpac prior to 2.1.0-DEV. Moderate Unreviewed
CVE-2022-1222 was published Apr 5, 2022
libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation High
CVE-2020-7595 was published for nokogiri (RubyGems) Feb 24, 2020
Nokogiri gem, via libxml, is affected by DoS vulnerabilities High
CVE-2017-16932 was published for nokogiri (RubyGems) May 13, 2022
Integer Overflow/Infinite Loop in the http crate High
CVE-2020-25574 was published for http (Rust) Aug 25, 2021
SwiftNIO Extras vulnerable to improper detection of complete HTTP body decompression High
CVE-2022-3252 was published for github.com/apple/swift-nio-extras (Swift) Jun 7, 2023
vojtarylko
A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some... High Unreviewed
CVE-2022-44617 was published Feb 7, 2023
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an... Moderate Unreviewed
CVE-2019-3560 was published May 24, 2022
A flaw was found in avahi in versions 0.6 up to 0.8. The event used to signal the termination of... Moderate Unreviewed
CVE-2021-3468 was published May 24, 2022
Routinator infinite loop vulnerability High
CVE-2021-43172 was published for routinator (Rust) May 24, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively... Moderate Unreviewed
CVE-2022-31628 was published Sep 29, 2022
StackStorm st2 Infinite Loop Condition High
CVE-2021-28667 was published for st2client (pip) May 24, 2022 withdrawn
The BMP image processor for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote... Moderate Unreviewed
CVE-2004-0753 was published Apr 29, 2022
Rack vulnerable to REDoS Moderate
CVE-2012-6109 was published for rack (RubyGems) Oct 24, 2017
Pion DTLS Header reconstruction method can be thrown into an infinite loop High
CVE-2022-29190 was published for github.com/pion/dtls (Go) May 24, 2022
Improper Check for filenames with overly long extensions in PostMaster (sending in email) or... Moderate Unreviewed
CVE-2019-18180 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database