Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

513 advisories

Loading
aacplusenc.c in HE-AAC+ Codec (aka libaacplus) 2.0.2 has an assertion failure, which might allow... High Unreviewed
CVE-2017-7605 was published May 13, 2022
The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted,... Moderate Unreviewed
CVE-2017-8372 was published May 13, 2022
OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via... High Unreviewed
CVE-2017-7478 was published May 17, 2022
sinopia, as used in SAP HANA XS 1.00 and 2.00, allows remote attackers to cause a denial of... High Unreviewed
CVE-2017-8915 was published May 13, 2022
In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion... Moderate Unreviewed
CVE-2017-11368 was published May 13, 2022
There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8,... Moderate Unreviewed
CVE-2017-13726 was published May 13, 2022
There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0... Moderate Unreviewed
CVE-2017-13727 was published May 13, 2022
There is a reachable assertion abort in the function jpc_pi_nextrpcl() in jpc/jpc_t2cod.c in... High Unreviewed
CVE-2017-13749 was published May 13, 2022
There is a reachable assertion abort in the function calcstepsizes() in jpc/jpc_dec.c in JasPer 2... High Unreviewed
CVE-2017-13751 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1297... High Unreviewed
CVE-2017-13746 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_sot() in jpc/jpc_dec.c in... High Unreviewed
CVE-2017-13745 was published May 13, 2022
The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split... Moderate Unreviewed
CVE-2017-13673 was published May 13, 2022
There is a reachable assertion abort in the function jpc_floorlog2() in jpc/jpc_math.c in JasPer... High Unreviewed
CVE-2017-13747 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1296... High Unreviewed
CVE-2017-13750 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dequantize() in jpc/jpc_dec.c in JasPer... High Unreviewed
CVE-2017-13752 was published May 13, 2022
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG... Moderate Unreviewed
CVE-2017-14649 was published May 13, 2022
RADOS Gateway in Ceph 12.1.0 through 12.2.1 allows remote authenticated users to cause a denial... Moderate Unreviewed
CVE-2017-16818 was published May 13, 2022
An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability... High Unreviewed
CVE-2025-29339 was published Apr 22, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf: Check... High Unreviewed
CVE-2023-52621 was published Mar 26, 2024
wasmtime has a runtime crash when combining tail calls with trapping imports Moderate
CVE-2024-47763 was published for wasmtime (Rust) Oct 9, 2024
alexcrichton fitzgen
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service ... Low Unreviewed
CVE-2025-47229 was published May 3, 2025
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function... Moderate Unreviewed
CVE-2024-3567 was published Apr 10, 2024
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
In the Linux kernel, the following vulnerability has been resolved: dma-buf/sync_file: Don't... Moderate Unreviewed
CVE-2021-47305 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between... Moderate Unreviewed
CVE-2021-47351 was published May 21, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database