Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,115 advisories

Loading
An issue was discovered in LibTIFF 4.0.9. There is a NULL pointer dereference in the function... Moderate Unreviewed
CVE-2018-18661 was published May 14, 2022
Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2018-19607 was published May 14, 2022
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from... Moderate Unreviewed
CVE-2018-19149 was published May 14, 2022
An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h... Moderate Unreviewed
CVE-2018-19060 was published May 14, 2022
There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in... Moderate Unreviewed
CVE-2018-20532 was published May 14, 2022
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in... Moderate Unreviewed
CVE-2018-20533 was published May 14, 2022
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer... High Unreviewed
CVE-2018-14609 was published May 14, 2022
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference... High Unreviewed
CVE-2018-14617 was published May 14, 2022
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer... Moderate Unreviewed
CVE-2018-20349 was published May 14, 2022
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x... High Unreviewed
CVE-2018-10548 was published May 14, 2022
An issue was discovered in PHP 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1.... High Unreviewed
CVE-2018-14884 was published May 14, 2022
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and... Critical Unreviewed
CVE-2018-4987 was published May 14, 2022
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006... High Unreviewed
CVE-2018-5030 was published May 14, 2022
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006... High Unreviewed
CVE-2018-5012 was published May 14, 2022
Adobe Acrobat and Reader versions 2018.011.20055 and earlier, 2017.011.30096 and earlier, and... High Unreviewed
CVE-2018-12799 was published May 14, 2022
Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019... High Unreviewed
CVE-2018-19720 was published May 14, 2022
Adobe Acrobat and Reader versions 2019.008.20081 and earlier, 2019.008.20080 and earlier, 2019... High Unreviewed
CVE-2018-16004 was published May 14, 2022
OpenJPEG 2.3.0 has a NULL pointer dereference for "red" in the imagetopnm function of jp2/convert.c Moderate Unreviewed
CVE-2018-18088 was published May 14, 2022
In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference vulnerability was found in... High Unreviewed
CVE-2018-7999 was published May 14, 2022
The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation... High Unreviewed
CVE-2022-29795 was published May 14, 2022
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0... Moderate Unreviewed
CVE-2017-7453 was published May 13, 2022
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0... Moderate Unreviewed
CVE-2017-7452 was published May 13, 2022
In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn... Moderate Unreviewed
CVE-2018-6319 was published May 13, 2022
An issue has been discovered in Bento4 1.5.1-624. A NULL pointer dereference can occur in... High Unreviewed
CVE-2018-14588 was published May 13, 2022
The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel through 4.9.9... High Unreviewed
CVE-2017-5970 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database