Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,137 advisories

Loading
Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows... Moderate Unreviewed
CVE-2018-7858 was published May 13, 2022
hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users... Moderate Unreviewed
CVE-2017-7718 was published May 13, 2022
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator)... Moderate Unreviewed
CVE-2017-5667 was published May 13, 2022
The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator)... Moderate Unreviewed
CVE-2016-10028 was published May 13, 2022
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of... Moderate Unreviewed
CVE-2017-11664 was published May 13, 2022
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of... Moderate Unreviewed
CVE-2016-7537 was published May 13, 2022
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds... Moderate Unreviewed
CVE-2016-7527 was published May 13, 2022
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-7528 was published May 13, 2022
coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2016-10071 was published May 13, 2022
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4... Moderate Unreviewed
CVE-2016-10070 was published May 13, 2022
libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a... Moderate Unreviewed
CVE-2016-9598 was published May 13, 2022
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function... Moderate Unreviewed
CVE-2017-14633 was published May 13, 2022
A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows attackers to hog the CPU... Moderate Unreviewed
CVE-2019-9721 was published May 13, 2022
In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the... Moderate Unreviewed
CVE-2019-9718 was published May 13, 2022
The decode_init function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote... Moderate Unreviewed
CVE-2018-7557 was published May 13, 2022
The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly... Moderate Unreviewed
CVE-2017-17081 was published May 13, 2022
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service ... Moderate Unreviewed
CVE-2018-13096 was published May 13, 2022
An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service ... Moderate Unreviewed
CVE-2018-13099 was published May 13, 2022
The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0... Moderate Unreviewed
CVE-2018-19841 was published May 13, 2022
MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2014-4341 was published May 13, 2022
The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1... Moderate Unreviewed
CVE-2015-2697 was published May 13, 2022
The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5)... Moderate Unreviewed
CVE-2015-8629 was published May 13, 2022
LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based... Moderate Unreviewed
CVE-2017-15018 was published May 13, 2022
The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote... Moderate Unreviewed
CVE-2018-8975 was published May 13, 2022
JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1... Moderate Unreviewed
CVE-2017-14132 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database