Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

513 advisories

Loading
Open5GS MME version <= 2.6.4 contains an assertion that can be remotely triggered via a malformed... High Unreviewed
CVE-2023-37021 was published Jan 22, 2025
Open5GS MME versions <= 2.6.4 contain a reachable assertion in the `Uplink NAS Transport` packet... High Unreviewed
CVE-2023-37023 was published Jan 22, 2025
The ACEManager component of ALEOS 4.16 and earlier does not perform input sanitization during... High Unreviewed
CVE-2023-40462 was published Dec 5, 2023
A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause... Moderate Unreviewed
CVE-2025-22919 was published Feb 19, 2025
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache... High Unreviewed
CVE-2024-33601 was published May 6, 2024
An issue was discovered in FlexRIC 2.0.0. It crashes during a Subscription Request denial-of... Moderate Unreviewed
CVE-2024-34034 was published Feb 25, 2025
An issue found in TCPprep v.4.4.3 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2023-27789 was published Mar 16, 2023
An issue found in TCPrewrite v.4.4.3 allows a remote attacker to cause a denial of service via... High Unreviewed
CVE-2023-27788 was published Mar 16, 2023
An issue found in TCPreplay tcprewrite v.4.4.3 allows a remote attacker to cause a denial of... High Unreviewed
CVE-2023-27783 was published Mar 16, 2023
In MPD before 0.23.8, as used on Automotive Grade Linux and other platforms, the PipeWire output... High Unreviewed
CVE-2022-48363 was published Feb 27, 2023
A reachable assertion in the decode_access_point_name_ie function of Magma <= 1.8.0 (fixed in v1... High Unreviewed
CVE-2024-24424 was published Jan 22, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: do not ASSERT() if... Moderate Unreviewed
CVE-2024-26727 was published Apr 3, 2024
An issue was discovered in Open5gs v2.7.2. InitialUEMessage, Registration request sent at a... High Unreviewed
CVE-2024-56921 was published Feb 3, 2025
An issue in Open5GS v.2.7.2 allows a remote attacker to cause a denial of service via the... High Unreviewed
CVE-2024-57519 was published Jan 29, 2025
A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion... High Unreviewed
CVE-2023-5679 was published Feb 13, 2024
atop through 2.11.0 allows local users to cause a denial of service (e.g., assertion failure and... Low Unreviewed
CVE-2025-31160 was published Mar 26, 2025
Processing of repeated responses to the same query, where both responses contain ECS pseudo... High Unreviewed
CVE-2022-3488 was published Jan 26, 2023
OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via... Moderate Unreviewed
CVE-2006-5779 was published May 1, 2022
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1... High Unreviewed
CVE-2016-8864 was published May 13, 2022
Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team... Critical Unreviewed
CVE-2022-29917 was published Dec 22, 2022
The Mozilla Fuzzing Team reported potential vulnerabilities present in Thunderbird 91.10. Some of... High Unreviewed
CVE-2022-34484 was published Dec 22, 2022
seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion... Moderate Unreviewed
CVE-2017-5981 was published May 13, 2022
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a... High Unreviewed
CVE-2016-9399 was published May 13, 2022
The jpc_dequantize function in jpc_dec.c in JasPer 1.900.13 allows remote attackers to cause a... High Unreviewed
CVE-2016-9397 was published May 13, 2022
The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to... High Unreviewed
CVE-2016-9398 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database