Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

21 matches found

RedhatCVE
RedhatCVEadded 2026/05/18 7:58 p.m.7 views

CVE-2026-44302

Snappier is a high performance C implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1...

7.5CVSS5.8AI score0.00052EPSS
Exploits0References1
NVD
NVDadded 2026/05/12 10:16 p.m.7 views

CVE-2026-44302

Snappier is a high performance C implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1...

7.5CVSS0.00052EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/05/12 9:33 p.m.4 views

CVE-2026-44302

Snappier is a high performance C implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1...

7.5CVSS5.8AI score0.00052EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/05/12 9:33 p.m.29 views

CVE-2026-44302 Snappier: Infinite loop in SnappyStream decompression on malformed framed input

Snappier is a high performance C implementation of the Snappy compression algorithm. Prior to 1.3.1, Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. This vulnerability is fixed in 1.3.1...

7.5CVSS0.00052EPSS
Exploits0References1
CNNVD
CNNVDadded 2026/05/12 12:0 a.m.4 views

Snappier 安全漏洞

Snappier is a pure C version of the Google Snappy compression algorithm developed by Brant Burnett. Versions prior to Snappier 1.3.1 contained a security vulnerability; this vulnerability stemmed from the inability to escape an infinite loop that occurred when SnappierStream decompressed Snappy...

7.5CVSS5.8AI score0.00052EPSS
Exploits0References2
Snyk
Snykadded 2026/05/06 8:53 p.m.4 views

Infinite loop

Overview Affected versions of this package are vulnerable to Infinite loop in the SnappyStreamDecompressor class, when decompressing malformed framed-format input. An attacker can cause the application to exhaust system resources by providing malicious stream data as small as 15 bytes PoC using...

8.7CVSS5.8AI score0.00052EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/05/06 8:53 p.m.8 views

Snappier has an infinite loop during SnappyStream decompression with malformed framed input

Summary Snappier.SnappyStream enters an uncatchable infinite loop when decompressing a malformed framed-format Snappy stream as small as 15 bytes. Details The hang manifests as a userspace busy loop with SnappyStreamDecompressor.Decompress repeatedly calling Crc32CAlgorithm.Append. The exact...

7.5CVSS5.8AI score0.00052EPSS
Exploits0References3Affected Software1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-0935

Malicious code in bioql PyPI...

7CVSS6.3AI score0.00264EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/23 6:1 a.m.2 views

CVE-2023-28638

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS7AI score0.00264EPSS
Exploits0References1
Veracode
Veracodeadded 2023/04/02 10:2 a.m.16 views

Denial Of Service (DoS)

Snappier is vulnerable to Denial Of Service DoS. The vulnerability exists because the Short-lived stack references to locations outside buffers may become invalid if they exist during a GC compaction, which leads to an attacker causing an application crash by providing a malicious input...

7CVSS5.7AI score0.00264EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2023/03/27 10:23 p.m.13 views

GHSA-838X-PCVX-6P5W Snappier vulnerable to buffer overrun due to improper restriction of operations within the bounds of a memory buffer

Impact This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change generally improves performance and reduces workload on the garbage collector. Howeve...

7CVSS6.4AI score0.00264EPSS
Exploits0References6
Github Security Blog
Github Security Blogadded 2023/03/27 10:23 p.m.20 views

Snappier vulnerable to buffer overrun due to improper restriction of operations within the bounds of a memory buffer

Impact This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change generally improves performance and reduces workload on the garbage collector. Howeve...

7CVSS6AI score0.00264EPSS
Exploits0References6Affected Software1
Snyk
Snykadded 2023/03/27 10:23 p.m.1 views

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds due to improper restriction of operations within the bounds of a memory buffer. Any resulting buffer overrun is likely to cause access to protected memory, which will then cause an exception and the process to be terminate...

7CVSS7AI score0.00264EPSS
Exploits0References2
NVD
NVDadded 2023/03/27 9:15 p.m.8 views

CVE-2023-28638

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS7AI score0.00264EPSS
Exploits0References2
Prion
Prionadded 2023/03/27 9:15 p.m.8 views

Buffer overflow

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

2.6CVSS5.9AI score0.00264EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2023/03/27 8:43 p.m.16 views

CVE-2023-28638 Stack references to locations outside buffers may become invalid if they exist during a GC compaction in Snappier

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS6.4AI score0.00264EPSS
Exploits0References4
Cvelist
Cvelistadded 2023/03/27 8:43 p.m.10 views

CVE-2023-28638 Stack references to locations outside buffers may become invalid if they exist during a GC compaction in Snappier

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS7.2AI score0.00264EPSS
Exploits0References2
CVE
CVEadded 2023/03/27 8:43 p.m.44 views

CVE-2023-28638

CVE-2023-28638 affects Snappier 1.1.0, a C# port of Google’s Snappy. The issue is a buffer overrun stemming from byte references briefly pointing outside buffer bounds during .NET GC compaction, which can invalidate buffer range checks and lead to a denial of service through a potential memory ac...

7CVSS6.4AI score0.00264EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/27 8:43 p.m.7 views

CVE-2023-28638 Stack references to locations outside buffers may become invalid if they exist during a GC compaction in Snappier

Snappier is a high performance C implementation of the Snappy compression algorithm. This is a buffer overrun vulnerability that can affect any user of Snappier 1.1.0. In this release, much of the code was rewritten to use byte references rather than pointers to pinned buffers. This change...

7CVSS7AI score0.00264EPSS
Exploits0References2
CNNVD
CNNVDadded 2023/03/27 12:0 a.m.2 views

Snappier 缓冲区错误漏洞

Snappier is a pure C port of Google's Snappy compression algorithm by the individual developer Brant Burnett. A buffer error vulnerability exists in Snappier version 1.1.0. An attacker could exploit this vulnerability to cause a buffer overflow and thus process termination...

7CVSS6.9AI score0.00264EPSS
Exploits0References4
Rows per page
Query Builder