Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

781 advisories

Loading
Snappier has an infinite loop during SnappyStream decompression with malformed framed input High
CVE-2026-44302 was published for Snappier (NuGet) May 6, 2026
pawlos Credited to pawlos
Pillow has a PDF Parsing Trailer Infinite Loop (DoS) Moderate
CVE-2026-42310 was published for pillow (pip) May 4, 2026
kexinoh Credited to kexinoh
TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service Moderate Unreviewed
CVE-2026-6528 was published Apr 30, 2026
DLMS/COSEM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 Moderate Unreviewed
CVE-2026-6536 was published Apr 30, 2026
Marked Vulnerable to OOM Denial of Service via Infinite Recursion in marked Tokenizer High
CVE-2026-41680 was published for marked (npm) Apr 29, 2026
MaanVader Credited to MaanVader
OpenMcdf has an Infinite loop DoS via crafted CFB directory cycle Moderate
CVE-2026-41511 was published for OpenMcdf (NuGet) Apr 22, 2026
pawlos Credited to pawlos
justhtml has sanitization bypass in custom policies and programmatic DOM Moderate
GHSA-vrx2-77f2-ww34 was published for justhtml (pip) Apr 22, 2026
EmilStenstrom Credited to EmilStenstrom
michaelknap Credited to michaelknap
ProTip! Advisories are also available from the GraphQL API