Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

430 advisories

Loading
An issue in BigAnt Software BigAnt Server v5.6.06 can lead to a Denial of Service (DoS). High Unreviewed
CVE-2022-23352 was published Mar 22, 2022
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer... Moderate Unreviewed
CVE-2022-24191 was published Apr 5, 2022
A denial of service vulnerability exists in the parseNormalModeParameters functionality of MZ... High Unreviewed
CVE-2022-21159 was published Apr 16, 2022
An infinite loop programming error exists in the DNS server functionality of Cesanta Mongoose 6.8... High Unreviewed
CVE-2017-2909 was published May 13, 2022
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the... Moderate Unreviewed
CVE-2022-4104 was published Nov 28, 2022
long running loops in grant table handling In order to properly monitor resource use, Xen... Moderate Unreviewed
CVE-2021-28698 was published May 24, 2022
A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device... Moderate Unreviewed
CVE-2021-20255 was published May 24, 2022
encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom... High Unreviewed
CVE-2021-27918 was published May 24, 2022
A vulnerability in the Excel XLM macro parsing module in Clam AntiVirus (ClamAV) Software... High Unreviewed
CVE-2021-1252 was published May 24, 2022
An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows attackers to cause a Denial... Moderate Unreviewed
CVE-2022-35165 was published Aug 19, 2022
libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG:... Moderate Unreviewed
CVE-2022-35166 was published Aug 19, 2022
An infinite loop in the function httpRpmPass of TP-Link TL-WR741N/TL-WR742N V1/V2/V3_130415... High Unreviewed
CVE-2022-32058 was published Jul 8, 2022
A CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability exists that could... High Unreviewed
CVE-2022-34760 was published Jul 14, 2022
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker... High Unreviewed
CVE-2022-30634 was published Jul 16, 2022
Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and... Moderate Unreviewed
CVE-2018-6687 was published May 13, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... Moderate Unreviewed
CVE-2022-29028 was published May 21, 2022
perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows remote attackers to... Moderate Unreviewed
CVE-2013-7488 was published May 5, 2022
Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an... Moderate Unreviewed
CVE-2019-13453 was published May 24, 2022
An infinite loop may be triggered in display_debug_abbrev() function in binutils/dwarf.c while... Moderate Unreviewed
CVE-2022-38128 was published Sep 2, 2022
In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service... Moderate Unreviewed
CVE-2019-15143 was published May 24, 2022
In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite... High Unreviewed
CVE-2019-16319 was published May 24, 2022
When GNOME Dia before 2019-11-27 is launched with a filename argument that is not a valid... Moderate Unreviewed
CVE-2019-19451 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the Dicom-packet parsing functionality... Moderate Unreviewed
CVE-2019-5091 was published May 24, 2022
In a Point-to-Multipoint (P2MP) Label Switched Path (LSP) scenario, an uncontrolled resource... Moderate Unreviewed
CVE-2020-1600 was published May 24, 2022
In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file can result in an... High Unreviewed
CVE-2019-20421 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API