Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,856
Erlang
36
GitHub Actions
36
Go
2,489
Maven
5,000+
npm
4,106
NuGet
735
pip
3,928
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

295 advisories

Loading
This vulnerability allows remote attackers to create a denial-of-service condition on affected... High Unreviewed
CVE-2022-37013 was published Mar 29, 2023
phpseclib Infinite Loop vulnerability High
CVE-2023-27560 was published for phpseclib/phpseclib (Composer) Mar 3, 2023
janedbal
Improper calculations in ECC implementation can trigger a Denial-of-Service (DoS) High
CVE-2023-25653 was published for node-jose (npm) Feb 16, 2023
justaugustus bifurcation
Denial of service in modem due to missing null check while processing IP packets with padding High Unreviewed
CVE-2022-25734 was published Feb 12, 2023
A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the... High Unreviewed
CVE-2022-46285 was published Feb 7, 2023
A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some... High Unreviewed
CVE-2022-44617 was published Feb 7, 2023
When a file is processed, an infinite loop occurs in next_inline() of the more_curly() function. High Unreviewed
CVE-2021-33642 was published Jan 20, 2023
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application... High Unreviewed
CVE-2023-20020 was published Jan 20, 2023
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME... High Unreviewed
CVE-2022-48256 was published Jan 13, 2023
socks Infinite Loop vulnerability High
CVE-2013-10005 was published for github.com/btcsuite/go-socks (Go) Dec 28, 2022
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming... High Unreviewed
CVE-2022-33238 was published Dec 13, 2022
qubes-mirage-firewall (aka Mirage firewall for QubesOS) 0.8.x through 0.8.3 allows guest OS users... High Unreviewed
CVE-2022-46770 was published Dec 7, 2022
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in... High Unreviewed
CVE-2022-25742 was published Nov 15, 2022
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6... High Unreviewed
CVE-2022-33239 was published Nov 15, 2022
PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf... High Unreviewed
CVE-2021-37819 was published Sep 10, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... High Unreviewed
CVE-2022-28884 was published Sep 7, 2022
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby... High Unreviewed
CVE-2022-28882 was published Aug 24, 2022
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame:... High Unreviewed
CVE-2022-37768 was published Aug 19, 2022
Endless Infinite loop in Blender-thumnailing due to logical bugs. High Unreviewed
CVE-2022-2833 was published Aug 17, 2022
A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.15), Teamcenter... High Unreviewed
CVE-2022-34661 was published Aug 11, 2022
Apache Avro Rust SDK vulnerable to reader looping in cycle endlessly, consuming CPU High
CVE-2022-35724 was published for apache-avro (Rust) Aug 10, 2022
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all... High Unreviewed
CVE-2022-34862 was published Aug 5, 2022
file-type vulnerable to Infinite Loop via malformed MKV file High
CVE-2022-36313 was published for file-type (npm) Jul 22, 2022
kiskoza ItalyPaleAle
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker... High Unreviewed
CVE-2022-30634 was published Jul 16, 2022
A CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability exists that could... High Unreviewed
CVE-2022-34760 was published Jul 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database