Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

280 advisories

Loading
The Linux kernel before 2.6.37 does not properly implement a certain clock-update optimization,... Moderate Unreviewed
CVE-2011-4621 was published May 13, 2022
The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to... Moderate Unreviewed
CVE-2015-8900 was published May 13, 2022
Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and... Moderate Unreviewed
CVE-2012-1186 was published May 13, 2022
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote... Moderate Unreviewed
CVE-2015-8902 was published May 13, 2022
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows... Moderate Unreviewed
CVE-2015-8903 was published May 13, 2022
ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2015-8901 was published May 13, 2022
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does... Moderate Unreviewed
CVE-2011-2213 was published May 13, 2022
The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent... Moderate Unreviewed
CVE-2017-6314 was published May 13, 2022
net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG... Moderate Unreviewed
CVE-2010-3880 was published May 13, 2022
In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders... Moderate Unreviewed
CVE-2018-18024 was published May 13, 2022
In ImageMagick 7.0.7-28, there is an infinite loop in the ReadOneMNGImage function of the coders... Moderate Unreviewed
CVE-2018-10177 was published May 13, 2022
On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and 14.0.0-14.0.0.2, Multi... Moderate Unreviewed
CVE-2019-6594 was published May 13, 2022
In libsixel v1.8.2, there is an infinite loop in the function sixel_decode_raw_impl() in the file... Moderate Unreviewed
CVE-2019-3573 was published May 13, 2022
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards (version v2.8.0... Moderate Unreviewed
CVE-2019-1000020 was published May 13, 2022
Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and... Moderate Unreviewed
CVE-2018-6687 was published May 13, 2022
The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers... Moderate Unreviewed
CVE-2017-14741 was published May 13, 2022
The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators... Moderate Unreviewed
CVE-2015-8558 was published May 13, 2022
libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2018-14567 was published May 13, 2022
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause... Moderate Unreviewed
CVE-2017-8112 was published May 13, 2022
A flaw was found in the Linux kernel in the function hid_debug_events_read() in drivers/hid/hid... Moderate Unreviewed
CVE-2019-3819 was published May 13, 2022
QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local... Moderate Unreviewed
CVE-2017-9375 was published May 13, 2022
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator)... Moderate Unreviewed
CVE-2017-5987 was published May 13, 2022
The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS... Moderate Unreviewed
CVE-2016-7909 was published May 13, 2022
The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0... Moderate Unreviewed
CVE-2017-6505 was published May 13, 2022
QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is... Moderate Unreviewed
CVE-2016-9776 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database