Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

454 advisories

Loading
A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the... High Unreviewed
CVE-2022-46285 was published Feb 7, 2023
A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some... High Unreviewed
CVE-2022-44617 was published Feb 7, 2023
When a file is processed, an infinite loop occurs in next_inline() of the more_curly() function. High Unreviewed
CVE-2021-33642 was published Jan 20, 2023
A vulnerability in the Device Management Servlet application of Cisco BroadWorks Application... High Unreviewed
CVE-2023-20020 was published Jan 20, 2023
Technitium DNS Server before 10.0 allows a self-CNAME denial-of-service attack in which a CNAME... High Unreviewed
CVE-2022-48256 was published Jan 13, 2023
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1... Moderate Unreviewed
CVE-2022-4345 was published Jan 12, 2023
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming... High Unreviewed
CVE-2022-33238 was published Dec 13, 2022
In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an... Moderate Unreviewed
CVE-2022-20476 was published Dec 13, 2022
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the... Moderate Unreviewed
CVE-2022-4104 was published Nov 28, 2022
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in... High Unreviewed
CVE-2022-25742 was published Nov 15, 2022
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6... High Unreviewed
CVE-2022-33239 was published Nov 15, 2022
An external attacker is able to send a specially crafted email (with many recipients) and trigger... Moderate Unreviewed
CVE-2022-39052 was published Oct 17, 2022
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19... Moderate Unreviewed
CVE-2022-42721 was published Oct 14, 2022
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other... Moderate Unreviewed
CVE-2014-0148 was published Sep 30, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively... Moderate Unreviewed
CVE-2022-31628 was published Sep 29, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... Moderate Unreviewed
CVE-2022-28886 was published Sep 25, 2022
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0... Moderate Unreviewed
CVE-2022-3190 was published Sep 14, 2022
PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite loop via the component /text/pdf... High Unreviewed
CVE-2021-37819 was published Sep 10, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... High Unreviewed
CVE-2022-28884 was published Sep 7, 2022
wolfSSL through 5.0.0 allows an attacker to cause a denial of service and infinite loop in the... Moderate Unreviewed
CVE-2021-44718 was published Sep 3, 2022
An infinite loop may be triggered in display_debug_abbrev() function in binutils/dwarf.c while... Moderate Unreviewed
CVE-2022-38128 was published Sep 2, 2022
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby... High Unreviewed
CVE-2022-28882 was published Aug 24, 2022
libjpeg commit 842c7ba was discovered to contain an infinite loop via the component JPEG:... Moderate Unreviewed
CVE-2022-35166 was published Aug 19, 2022
An issue in AP4_SgpdAtom::AP4_SgpdAtom() of Bento4-1.6.0-639 allows attackers to cause a Denial... Moderate Unreviewed
CVE-2022-35165 was published Aug 19, 2022
libjpeg commit 281daa9 was discovered to contain an infinite loop via the component Frame:... High Unreviewed
CVE-2022-37768 was published Aug 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database