Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,292 advisories

Loading
In all Qualcomm products with Android releases from CAF using the Linux kernel, user controlled... High Unreviewed
CVE-2017-8250 was published May 13, 2022
The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3... Moderate Unreviewed
CVE-2017-7542 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite... High Unreviewed
CVE-2017-5596 was published May 13, 2022
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth... High Unreviewed
CVE-2017-3599 was published May 13, 2022
An issue was discovered in Exempi before 2.4.4. Integer overflow in the Chunk class in XMPFiles... Moderate Unreviewed
CVE-2017-18233 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, multiple values... High Unreviewed
CVE-2017-17765 was published May 13, 2022
In SWFTools 0.9.2, the png_load function in lib/png.c does not properly validate an alloclen_64... High Unreviewed
CVE-2017-16797 was published May 13, 2022
There is a stack consumption vulnerability in the Exiv2::Internal::stringFormat function of image... Moderate Unreviewed
CVE-2017-14861 was published May 13, 2022
CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the... Critical Unreviewed
CVE-2017-1000158 was published May 13, 2022
A remote code execution vulnerability in the Android system (libutils). Product: Android.... High Unreviewed
CVE-2017-0841 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (mediadrmserver). Product:... High Unreviewed
CVE-2017-0729 was published May 13, 2022
A remote code execution vulnerability in the Android system ui. Product: Android. Versions: 7.1.1... High Unreviewed
CVE-2017-0702 was published May 13, 2022
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 7.0... Moderate Unreviewed
CVE-2017-0691 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local... High Unreviewed
CVE-2017-0611 was published May 13, 2022
A denial of service vulnerability in libstagefright in Mediaserver could enable an attacker to... Moderate Unreviewed
CVE-2017-0603 was published May 13, 2022
An elevation of privilege vulnerability in Audioserver could enable a local malicious application... High Unreviewed
CVE-2017-0597 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm crypto engine driver could enable a local... High Unreviewed
CVE-2017-0576 was published May 13, 2022
An elevation of privilege vulnerability in libnl could enable a local malicious application to... High Unreviewed
CVE-2017-0553 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local... High Unreviewed
CVE-2017-0521 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0410 was published May 13, 2022
An information disclosure vulnerability in silk/NLSF_stabilize.c in libopus in Mediaserver could... High Unreviewed
CVE-2017-0381 was published May 13, 2022
An elevation of privilege vulnerability in the Framework APIs could enable a local malicious... High Unreviewed
CVE-2017-0383 was published May 13, 2022
An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious... High Unreviewed
CVE-2017-0307 was published May 13, 2022
The mintToken function of a smart contract implementation for Super Carbon Coin (SCC), an... High Unreviewed
CVE-2018-13191 was published May 13, 2022
The mintToken function of a smart contract implementation for CIBN Live Token (CIBN LIVE), an... High Unreviewed
CVE-2018-13187 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database