Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,866
Erlang
36
GitHub Actions
36
Go
2,491
Maven
5,000+
npm
4,111
NuGet
735
pip
3,933
Pub
12
RubyGems
945
Rust
1,018
Swift
39
Unreviewed advisories
All unreviewed
5,000+

309 advisories

Loading
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... Moderate Unreviewed
CVE-2022-28886 was published Sep 25, 2022
hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer... Moderate Unreviewed
CVE-2020-28916 was published May 24, 2022
Infinite Loop in Apache James Moderate
CVE-2021-40111 was published for org.apache.james:james-server (Maven) Jan 8, 2022
hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop. Moderate Unreviewed
CVE-2020-25625 was published May 24, 2022
An infinite loop vulnerability exists in gpac 1.1.0 in the gf_log function, which causes a Denial... Moderate Unreviewed
CVE-2021-44924 was published Dec 22, 2021
The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed
CVE-2016-8909 was published May 13, 2022
The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed
CVE-2016-8910 was published May 13, 2022
kamadak-exif vulnerable to Infinite loop when parsing PNG files Moderate
CVE-2021-21235 was published for kamadak-exif (Rust) Oct 6, 2022
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0... Moderate Unreviewed
CVE-2022-3190 was published Sep 14, 2022
An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause... Moderate Unreviewed
CVE-2018-7174 was published May 13, 2022
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers... Moderate Unreviewed
CVE-2018-6253 was published May 13, 2022
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote... Moderate Unreviewed
CVE-2018-9251 was published May 13, 2022
VMware ESXi (6.7, 6.5, 6.0), Workstation (15.x and 14.x) and Fusion (11.x and 10.x) contain a... Moderate Unreviewed
CVE-2018-6977 was published May 13, 2022
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of... Moderate Unreviewed
CVE-2018-9058 was published May 13, 2022
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch... Moderate Unreviewed
CVE-2018-7453 was published May 13, 2022
In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage... Moderate Unreviewed
CVE-2018-5685 was published May 13, 2022
** DISPUTED ** In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop... Moderate Unreviewed
CVE-2018-19826 was published May 13, 2022
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3.... Moderate Unreviewed
CVE-2018-20099 was published May 13, 2022
libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows... Moderate Unreviewed
CVE-2018-20348 was published May 13, 2022
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed
CVE-2018-18915 was published May 13, 2022
In Bento4 v1.5.1-624, AP4_File::ParseStream in Ap4File.cpp allows remote attackers to cause a... Moderate Unreviewed
CVE-2018-14445 was published May 13, 2022
GNU Libextractor before 1.7 contains an infinite loop vulnerability in... Moderate Unreviewed
CVE-2018-14347 was published May 13, 2022
An issue has been found in dbf2txt through 2012-07-19. It is a infinite loop. Moderate Unreviewed
CVE-2018-17042 was published May 13, 2022
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial... Moderate Unreviewed
CVE-2018-10981 was published May 13, 2022
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in... Moderate Unreviewed
CVE-2018-15856 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database