Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

280 advisories

Loading
Timergrp module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10;... Moderate Unreviewed
CVE-2017-17150 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... Moderate Unreviewed
CVE-2017-15835 was published May 13, 2022
Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote... Moderate Unreviewed
CVE-2017-15223 was published May 13, 2022
find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed
CVE-2017-15024 was published May 13, 2022
read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14933 was published May 13, 2022
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14932 was published May 13, 2022
In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in... Moderate Unreviewed
CVE-2017-13756 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11624 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11625 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11626 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11627 was published May 13, 2022
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed
CVE-2017-11338 was published May 13, 2022
Bad reference counting in the context of accept_ice_connection() in gsm-xsmp-server.c in old... Moderate Unreviewed
CVE-2017-11171 was published May 13, 2022
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 6.0... Moderate Unreviewed
CVE-2017-0685 was published May 13, 2022
A denial of service vulnerability was discovered in Samba's LDAP server before versions 4.7.12, 4... Moderate Unreviewed
CVE-2018-14629 was published May 13, 2022
Denial of Service in Unified Shader Compiler in Intel Graphics Drivers before 10.18.x.5056 (aka... Moderate Unreviewed
CVE-2018-12154 was published May 13, 2022
In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg_dev_end_tile in fitz/svg... Moderate Unreviewed
CVE-2018-19777 was published May 13, 2022
In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the... Moderate Unreviewed
CVE-2018-5686 was published May 13, 2022
The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers... Moderate Unreviewed
CVE-2018-7751 was published May 13, 2022
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed
CVE-2018-18701 was published May 13, 2022
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed
CVE-2018-18700 was published May 13, 2022
The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU allows local guest OS... Moderate Unreviewed
CVE-2016-4453 was published May 13, 2022
ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to... Moderate Unreviewed
CVE-2015-7850 was published May 13, 2022
The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote... Moderate Unreviewed
CVE-2017-18267 was published May 13, 2022
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a... Moderate Unreviewed
CVE-2018-16646 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database