Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

281 advisories

Loading
ngiflib commit 5e7292 was discovered to contain an infinite loop via the function DecodeGifImg at... Moderate Unreviewed
CVE-2023-37748 was published Jul 19, 2023
In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c .Which... Moderate Unreviewed
CVE-2021-33294 was published Jul 18, 2023
PyPDF2 vulnerable to possible Infinite Loop when reading malformed objects Moderate
CVE-2023-36807 was published for PyPDF2 (pip) Jun 30, 2023
MartinThoma
pypdf and PyPDF2 possible Infinite Loop when a comment isn't followed by a character Moderate
CVE-2023-36464 was published for PyPDF2 (pip) Jun 30, 2023
exiledkingcc
OpenFGA vulnerable to denial of service due to circular relationship Moderate
CVE-2023-35933 was published for github.com/openfga/openfga (Go) Jun 28, 2023
A vulnerability in the Administrative XML Web Service (AXL) API of Cisco Unified Communications... Moderate Unreviewed
CVE-2023-20116 was published Jun 28, 2023
A loop with unreachable exit condition ('infinite loop') in Fortinet FortiOS version 7.2.0... Moderate Unreviewed
CVE-2023-33305 was published Jun 13, 2023
XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of... Moderate Unreviewed
CVE-2023-2952 was published May 31, 2023
An issue in the component hang.wasm of WebAssembly 1.0 causes an infinite loop. Moderate Unreviewed
CVE-2023-30300 was published May 3, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20997 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20999 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20998 was published Mar 24, 2023
In multiple locations, there is a possible way to trigger a persistent reboot loop due to... Moderate Unreviewed
CVE-2023-20996 was published Mar 24, 2023
phpseclib Infinite Loop vulnerability Moderate
CVE-2023-27560 was published for phpseclib/phpseclib (Composer) Mar 3, 2023
janedbal
DoS vulnerability in MaliciousCode filter Moderate
CVE-2023-23617 was published for openmage/magento-lts (Composer) Jan 27, 2023
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1... Moderate Unreviewed
CVE-2022-4345 was published Jan 12, 2023
In setEnabledSetting of PackageManager.java, there is a possible way to get the device into an... Moderate Unreviewed
CVE-2022-20476 was published Dec 13, 2022
A loop with an unreachable exit condition can be triggered by passing a crafted JPEG file to the... Moderate Unreviewed
CVE-2022-4104 was published Nov 28, 2022
An external attacker is able to send a specially crafted email (with many recipients) and trigger... Moderate Unreviewed
CVE-2022-39052 was published Oct 17, 2022
A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19... Moderate Unreviewed
CVE-2022-42721 was published Oct 14, 2022
kamadak-exif vulnerable to Infinite loop when parsing PNG files Moderate
CVE-2021-21235 was published for kamadak-exif (Rust) Oct 6, 2022
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other... Moderate Unreviewed
CVE-2014-0148 was published Sep 30, 2022
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively... Moderate Unreviewed
CVE-2022-31628 was published Sep 29, 2022
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where... Moderate Unreviewed
CVE-2022-28886 was published Sep 25, 2022
Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0... Moderate Unreviewed
CVE-2022-3190 was published Sep 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database