GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,799
Composer 4,866
Erlang 36
GitHub Actions 36
Go 2,492
Maven 5,917
npm 4,114
NuGet 735
pip 3,936
Pub 12
RubyGems 945
Rust 1,018
Swift 39

Unreviewed advisories

All unreviewed 268,895

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

617 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion... Moderate Unreviewed

CVE-2017-9208 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This... High Unreviewed

CVE-2017-9349 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite... High Unreviewed

CVE-2017-9352 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite... High Unreviewed

CVE-2017-9346 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop... High Unreviewed

CVE-2017-9345 was published May 13, 2022

smbd in Samba before 4.4.10 and 4.5.x before 4.5.6 has a denial of service vulnerability ... Moderate Unreviewed

CVE-2017-9461 was published May 13, 2022

QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest... Moderate Unreviewed

CVE-2017-9310 was published May 13, 2022

QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows... Moderate Unreviewed

CVE-2017-9330 was published May 13, 2022

The ASN.1 parser in strongSwan before 5.5.3 improperly handles CHOICE types when the x509 plugin... High Unreviewed

CVE-2017-9023 was published May 13, 2022

The quicktime_read_moov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause... High Unreviewed

CVE-2017-9122 was published May 13, 2022

The cr_parser_parse_selector_core function in cr-parser.c in libcroco 0.6.12 allows remote... High Unreviewed

CVE-2017-8871 was published May 13, 2022

QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local... Moderate Unreviewed

CVE-2017-9375 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite... High Unreviewed

CVE-2017-11406 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11627 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11624 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11626 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11625 was published May 13, 2022

The TDStretch::processSamples function in source/SoundTouch/TDStretch.cpp in SoundTouch 1.9.2... High Unreviewed

CVE-2017-9258 was published May 13, 2022

The ExifImageFile::readImage function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote... High Unreviewed

CVE-2017-11118 was published May 13, 2022

ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to... Moderate Unreviewed

CVE-2015-7850 was published May 13, 2022

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to... High Unreviewed

CVE-2017-13728 was published May 13, 2022

The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer... High Unreviewed

CVE-2017-14339 was published May 13, 2022

The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers... Moderate Unreviewed

CVE-2017-14741 was published May 13, 2022

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed

CVE-2017-14933 was published May 13, 2022

decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed

CVE-2017-14932 was published May 13, 2022

Previous 1…23…25 Next

Previous 1 2 … 21 22 23 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

617 advisories