GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

290 advisories

Filter by severity

Sort by

Least recently updated

A flaw was found in PDFResurrect in version 0.22b. There is an infinite loop in... Moderate Unreviewed

CVE-2021-3508 was published May 24, 2022

An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a... Moderate Unreviewed

CVE-2020-36310 was published May 24, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 where an... Moderate Unreviewed

CVE-2021-22197 was published May 24, 2022

A potential stack overflow via infinite loop issue was found in various NIC emulators of QEMU in... Moderate Unreviewed

CVE-2021-3416 was published May 24, 2022

Modem will enter into busy mode in an infinite loop while parsing histogram dimension due to... Moderate Unreviewed

CVE-2020-11186 was published May 24, 2022

A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 (All versions). An attacker with... Moderate Unreviewed

CVE-2021-25673 was published May 24, 2022

A stack overflow via an infinite recursion vulnerability was found in the eepro100 i8255x device... Moderate Unreviewed

CVE-2021-20255 was published May 24, 2022

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... Moderate Unreviewed

CVE-2020-27618 was published May 24, 2022

Hirschmann OS2, RSP, and RSPE devices before HiOS 08.3.00 allow a denial of service. An... Moderate Unreviewed

CVE-2020-9307 was published May 24, 2022

In OpenWrt 19.07.x before 19.07.7, when IPv6 is used, a routing loop can occur that generates... Moderate Unreviewed

CVE-2021-22161 was published May 24, 2022

In an EVPN/VXLAN scenario, if an IRB interface with a virtual gateway address (VGA) is configured... Moderate Unreviewed

CVE-2021-0221 was published May 24, 2022

GNOME gdk-pixbuf (aka GdkPixbuf) before 2.42.2 allows a denial of service (infinite loop) in lzw... Moderate Unreviewed

CVE-2020-29385 was published May 24, 2022

hw/net/e1000e_core.c in QEMU 5.0.0 has an infinite loop via an RX descriptor with a NULL buffer... Moderate Unreviewed

CVE-2020-28916 was published May 24, 2022

A user authorized to perform database queries may trigger denial of service by issuing specially... Moderate Unreviewed

CVE-2018-20803 was published May 24, 2022

An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among... Moderate Unreviewed

CVE-2020-16127 was published May 24, 2022

An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel... Moderate Unreviewed

CVE-2020-27152 was published May 24, 2022

A flaw was found in the Linux kernel's implementation of biovecs in versions before 5.9-rc7. A... Moderate Unreviewed

CVE-2020-25641 was published May 24, 2022

hw/usb/hcd-ohci.c in QEMU 5.0.0 has an infinite loop when a TD list has a loop. Moderate Unreviewed

CVE-2020-25625 was published May 24, 2022

In Threshold::getHistogram of ImageProcessHelper.java, there is a possible crash loop due to an... Moderate Unreviewed

CVE-2020-0247 was published May 24, 2022

When in an endless loop, a website specifying a custom cursor using CSS could make it look like... Moderate Unreviewed

CVE-2020-15654 was published May 24, 2022

In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to... Moderate Unreviewed

CVE-2019-20907 was published May 24, 2022

In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was... Moderate Unreviewed

CVE-2020-15466 was published May 24, 2022

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes... Moderate Unreviewed

CVE-2020-14398 was published May 24, 2022

ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via... Moderate Unreviewed

CVE-2020-13800 was published May 24, 2022

Unbound before 1.10.1 has an infinite loop via malformed DNS answers received from upstream servers. Moderate Unreviewed

CVE-2020-12663 was published May 24, 2022

Previous 1 2 3 4 5 6 7 … 11 12 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

290 advisories