Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

270 advisories

Loading
An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6... High Unreviewed
CVE-2023-38197 was published Jul 13, 2023
SwiftNIO Extras vulnerable to improper detection of complete HTTP body decompression High
CVE-2022-3252 was published for github.com/apple/swift-nio-extras (Swift) Jun 7, 2023
vojtarylko
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via... High Unreviewed
CVE-2023-2879 was published May 26, 2023
This vulnerability allows remote attackers to create a denial-of-service condition on affected... High Unreviewed
CVE-2022-37013 was published Mar 29, 2023
Improper calculations in ECC implementation can trigger a Denial-of-Service (DoS) High
CVE-2023-25653 was published for node-jose (npm) Feb 16, 2023
justaugustus bifurcation
Denial of service in modem due to missing null check while processing IP packets with padding High Unreviewed
CVE-2022-25734 was published Feb 12, 2023
A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the... High Unreviewed
CVE-2022-46285 was published Feb 7, 2023
A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some... High Unreviewed
CVE-2022-44617 was published Feb 7, 2023
When a file is processed, an infinite loop occurs in next_inline() of the more_curly() function. High Unreviewed
CVE-2021-33642 was published Jan 20, 2023
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application... High Unreviewed
CVE-2023-20020 was published Jan 20, 2023
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME... High Unreviewed
CVE-2022-48256 was published Jan 13, 2023
socks Infinite Loop vulnerability High
CVE-2013-10005 was published for github.com/btcsuite/go-socks (Go) Dec 28, 2022
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming... High Unreviewed
CVE-2022-33238 was published Dec 13, 2022
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in... High Unreviewed
CVE-2022-25742 was published Nov 15, 2022
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6... High Unreviewed
CVE-2022-33239 was published Nov 15, 2022
PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf... High Unreviewed
CVE-2021-37819 was published Sep 10, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... High Unreviewed
CVE-2022-28884 was published Sep 7, 2022
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby... High Unreviewed
CVE-2022-28882 was published Aug 24, 2022
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame:... High Unreviewed
CVE-2022-37768 was published Aug 19, 2022
Endless Infinite loop in Blender-thumnailing due to logical bugs. High Unreviewed
CVE-2022-2833 was published Aug 17, 2022
A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.15), Teamcenter... High Unreviewed
CVE-2022-34661 was published Aug 11, 2022
Apache Avro Rust SDK vulnerable to reader looping in cycle endlessly, consuming CPU High
CVE-2022-35724 was published for apache-avro (Rust) Aug 10, 2022
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all... High Unreviewed
CVE-2022-34862 was published Aug 5, 2022
file-type vulnerable to Infinite Loop via malformed MKV file High
CVE-2022-36313 was published for file-type (npm) Jul 22, 2022
kiskoza ItalyPaleAle
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker... High Unreviewed
CVE-2022-30634 was published Jul 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database