GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,904

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

113 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The... High Unreviewed

CVE-2020-29569 was published May 24, 2022

A denial of service issue was addressed with improved state handling. This issue is fixed in... Moderate Unreviewed

CVE-2020-27898 was published May 24, 2022

An issue was discovered in the DBI module before 1.643 for Perl. The hv_fetch() documentation... High Unreviewed

CVE-2019-20919 was published May 24, 2022

The decode program in silk-v3-decoder Version:20160922 Build By kn007 does not strictly check... High Unreviewed

CVE-2020-24074 was published May 24, 2022

An exploitable denial-of-service vulnerability exists in the message-parsing functionality of... Moderate Unreviewed

CVE-2020-6078 was published May 24, 2022

smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products,... High Unreviewed

CVE-2020-7247 was published May 24, 2022

An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. On... Critical Unreviewed

CVE-2019-15900 was published May 24, 2022

FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in... High Unreviewed

CVE-2019-15942 was published May 24, 2022

dmcrypt-get-device, as shipped in the eject package of Debian and Ubuntu, does not check the... High Unreviewed

CVE-2017-6964 was published May 13, 2022

A denial of service vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed

CVE-2017-0774 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (libhevc). Product: Android.... High Unreviewed

CVE-2017-0720 was published May 13, 2022

A remote denial of service vulnerability in libhevc in Mediaserver could enable an attacker to... High Unreviewed

CVE-2017-0599 was published May 13, 2022

In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was... High Unreviewed

CVE-2018-14367 was published May 13, 2022

QEMU can have an infinite loop in hw/rdma/vmw/pvrdma_dev_ring.c because return values are not... High Unreviewed

CVE-2018-20216 was published May 13, 2022

In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet... High Unreviewed

CVE-2019-10902 was published May 13, 2022

The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders... Moderate Unreviewed

CVE-2018-16643 was published May 13, 2022

A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The... High Unreviewed

CVE-2018-14622 was published May 13, 2022

The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the... Moderate Unreviewed

CVE-2016-10061 was published May 13, 2022

The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not... Moderate Unreviewed

CVE-2016-10060 was published May 13, 2022

Unchecked return value in the BIOS firmware for some Intel(R) Processors may allow a privileged... Moderate Unreviewed

CVE-2021-0155 was published May 13, 2022

The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a... Moderate Unreviewed

CVE-2010-0211 was published May 2, 2022

Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not properly check the return value... Moderate Unreviewed

CVE-2009-0265 was published May 2, 2022

mount and umount in util-linux and loop-aes-utils call the setuid and setgid functions in the... High Unreviewed

CVE-2007-5191 was published May 1, 2022

Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 and earlier allows remote... Moderate Unreviewed

CVE-2007-3798 was published May 1, 2022

The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional... High Unreviewed

CVE-2005-4360 was published May 1, 2022

Previous 1…45 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

113 advisories