GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,824
Composer 4,869
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,923
npm 4,122
NuGet 735
pip 3,942
Pub 12
RubyGems 945
Rust 1,019
Swift 39

Unreviewed advisories

All unreviewed 269,057

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

486 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in... High Unreviewed

CVE-2019-3833 was published May 13, 2022

LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop... High Unreviewed

CVE-2018-20021 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissector could go into an infinite loop... High Unreviewed

CVE-2018-7421 was published May 13, 2022

QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local... Moderate Unreviewed

CVE-2017-9375 was published May 13, 2022

The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator)... Moderate Unreviewed

CVE-2017-5987 was published May 13, 2022

QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows... Moderate Unreviewed

CVE-2017-9330 was published May 13, 2022

The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0... Moderate Unreviewed

CVE-2017-6505 was published May 13, 2022

The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS... Moderate Unreviewed

CVE-2016-7909 was published May 13, 2022

QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is... Moderate Unreviewed

CVE-2016-9776 was published May 13, 2022

The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly... Moderate Unreviewed

CVE-2016-7908 was published May 13, 2022

QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite... Moderate Unreviewed

CVE-2016-1981 was published May 13, 2022

An error within the "parse_minolta()" function (dcraw/dcraw.c) in LibRaw versions prior to 0.18... High Unreviewed

CVE-2018-5813 was published May 13, 2022

QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest... Moderate Unreviewed

CVE-2017-9310 was published May 13, 2022

In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload... Moderate Unreviewed

CVE-2017-14058 was published May 13, 2022

The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPack through 5.1.0 allows... Moderate Unreviewed

CVE-2018-19840 was published May 13, 2022

An issue was discovered in cairo 1.16.0. There is an infinite loop in the function... Moderate Unreviewed

CVE-2019-6462 was published May 13, 2022

In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and... Moderate Unreviewed

CVE-2018-20467 was published May 13, 2022

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote... High Unreviewed

CVE-2017-16944 was published May 13, 2022

In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows... Critical Unreviewed

CVE-2018-20784 was published May 13, 2022

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to... High Unreviewed

CVE-2017-13728 was published May 13, 2022

In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and application hang in the... Moderate Unreviewed

CVE-2018-5650 was published May 13, 2022

The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest... Moderate Unreviewed

CVE-2017-5973 was published May 13, 2022

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-8909 was published May 13, 2022

The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed

CVE-2016-8910 was published May 13, 2022

An issue was discovered in Daimler Mercedes-Benz COMAND 17/13.0 50.12 on Mercedes-Benz C-Class... High Unreviewed

CVE-2018-18070 was published May 13, 2022

Previous 1…18…20 Next

Previous 1 2 … 16 17 18 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

486 advisories