Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

281 advisories

Loading
In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service... Moderate Unreviewed
CVE-2019-15143 was published May 24, 2022
In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c. Moderate Unreviewed
CVE-2019-14372 was published May 24, 2022
mgetty prior to version 1.2.1 is affected by: Infinite Loop. The impact is: DoS, the program does... Moderate Unreviewed
CVE-2019-1010189 was published May 24, 2022
Zipios before 0.1.7 does not properly handle certain malformed zip archives and can go into an... Moderate Unreviewed
CVE-2019-13453 was published May 24, 2022
On BIG-IP 14.1.0-14.1.0.5 and 14.0.0-14.0.0.4, Malformed http requests made to an undisclosed... Moderate Unreviewed
CVE-2019-6638 was published May 24, 2022
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an... Moderate Unreviewed
CVE-2019-3560 was published May 24, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... Moderate Unreviewed
CVE-2022-29028 was published May 21, 2022
imagemagick 6.8.9.6 has remote DOS via infinite loop Moderate Unreviewed
CVE-2014-8561 was published May 17, 2022
Loop with Unreachable Exit Condition in Apache POI Moderate
CVE-2014-9527 was published for org.apache.poi:poi (Maven) May 17, 2022
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a... Moderate Unreviewed
CVE-2011-1002 was published May 17, 2022
Stack consumption vulnerability in the dissect_ber_choice function in the BER dissector in... Moderate Unreviewed
CVE-2011-1142 was published May 17, 2022
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote... Moderate Unreviewed
CVE-2018-9251 was published May 13, 2022
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of... Moderate Unreviewed
CVE-2018-9058 was published May 13, 2022
Loop with Unreachable Exit Condition in Apache PDFBox Moderate
CVE-2018-8036 was published for org.apache.pdfbox:pdfbox (Maven) May 13, 2022
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch... Moderate Unreviewed
CVE-2018-7453 was published May 13, 2022
An issue was discovered in xpdf 4.00. An infinite loop in XRef::Xref allows an attacker to cause... Moderate Unreviewed
CVE-2018-7174 was published May 13, 2022
VMware ESXi (6.7, 6.5, 6.0), Workstation (15.x and 14.x) and Fusion (11.x and 10.x) contain a... Moderate Unreviewed
CVE-2018-6977 was published May 13, 2022
NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers... Moderate Unreviewed
CVE-2018-6253 was published May 13, 2022
In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage... Moderate Unreviewed
CVE-2018-5685 was published May 13, 2022
libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows... Moderate Unreviewed
CVE-2018-20348 was published May 13, 2022
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3.... Moderate Unreviewed
CVE-2018-20099 was published May 13, 2022
Infinite Loop in Jenkins Core Moderate
CVE-2018-1999044 was published for org.jenkins-ci.main:jenkins-core (Maven) May 13, 2022
** DISPUTED ** In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop... Moderate Unreviewed
CVE-2018-19826 was published May 13, 2022
In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may suffer... Moderate Unreviewed
CVE-2018-19108 was published May 13, 2022
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed
CVE-2018-18915 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database