Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,145
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,137 advisories

Loading
The decode_frame function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows remote... Moderate Unreviewed
CVE-2018-6621 was published May 13, 2022
LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based... Moderate Unreviewed
CVE-2017-15045 was published May 13, 2022
Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted... Moderate Unreviewed
CVE-2014-3675 was published May 13, 2022
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to... Moderate Unreviewed
CVE-2016-3178 was published May 13, 2022
The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service... Moderate Unreviewed
CVE-2016-7101 was published May 13, 2022
LocaleLowercase in MagickCore/locale.c in ImageMagick before 7.0.8-32 allows out-of-bounds access... Moderate Unreviewed
CVE-2019-10714 was published May 13, 2022
The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an... Moderate Unreviewed
CVE-2017-13769 was published May 13, 2022
ImageMagick before 7.0.7-12 has a coders/png.c Magick_png_read_raw_profile heap-based buffer over... Moderate Unreviewed
CVE-2017-17504 was published May 13, 2022
MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2016-7799 was published May 13, 2022
The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel... Moderate Unreviewed
CVE-2017-8831 was published May 13, 2022
The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote... Moderate Unreviewed
CVE-2016-2518 was published May 13, 2022
An issue was discovered in libming 0.4.8. There is a heap-based buffer over-read in the function... Moderate Unreviewed
CVE-2019-3572 was published May 13, 2022
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The decode_bundle function... Moderate Unreviewed
CVE-2018-17206 was published May 13, 2022
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support,... Moderate Unreviewed
CVE-2016-1249 was published May 13, 2022
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat... Moderate Unreviewed
CVE-2016-5309 was published May 13, 2022
The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote... Moderate Unreviewed
CVE-2018-11439 was published May 13, 2022
The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote... Moderate Unreviewed
CVE-2016-6306 was published May 13, 2022
The windows_icon_typefind function in gst-plugins-base in GStreamer before 1.10.2, when G_SLICE... Moderate Unreviewed
CVE-2016-9811 was published May 13, 2022
An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function... Moderate Unreviewed
CVE-2019-7150 was published May 13, 2022
In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32_xlatetom in... Moderate Unreviewed
CVE-2019-7665 was published May 13, 2022
dwarf_getaranges in dwarf_getaranges.c in libdw in elfutils before 2018-08-18 allows remote... Moderate Unreviewed
CVE-2018-16062 was published May 13, 2022
do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related... Moderate Unreviewed
CVE-2019-8905 was published May 13, 2022
do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is... Moderate Unreviewed
CVE-2019-8906 was published May 13, 2022
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed... Moderate Unreviewed
CVE-2019-9074 was published May 13, 2022
Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV before 4.05.000, PFXEXEDLS before 4.05.000,... Moderate Unreviewed
CVE-2016-2291 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database