Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,152
Maven
5,000+
npm
3,816
NuGet
692
pip
3,492
Pub
12
RubyGems
902
Rust
900
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,245 advisories

Loading
An issue was discovered in the merge_strings function in merge.c in the Binary File Descriptor ... Moderate Unreviewed
CVE-2018-18606 was published May 13, 2022
An issue was discovered in elf_link_input_bfd in elflink.c in the Binary File Descriptor (BFD)... Moderate Unreviewed
CVE-2018-18607 was published May 13, 2022
The assign_file_positions_for_non_load_sections function in elf.c in the Binary File Descriptor ... Moderate Unreviewed
CVE-2018-7570 was published May 13, 2022
The swap_std_reloc_in function in aoutx.h in the Binary File Descriptor (BFD) library (aka libbfd... Moderate Unreviewed
CVE-2018-7642 was published May 13, 2022
libarchive version commit 379867ecb330b3a952fb7bfa7bffb7bbd5547205 onwards (release v3.3.0... Moderate Unreviewed
CVE-2018-1000879 was published May 13, 2022
The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to... Moderate Unreviewed
CVE-2017-17127 was published May 13, 2022
The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0... Moderate Unreviewed
CVE-2015-8922 was published May 13, 2022
The acc_ctx_cont function in the SPNEGO acceptor in lib/gssapi/spnego/spnego_mech.c in MIT... High Unreviewed
CVE-2014-4344 was published May 13, 2022
The validate_as_request function in kdc_util.c in the Key Distribution Center (KDC) in MIT... Moderate Unreviewed
CVE-2016-3120 was published May 13, 2022
In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles... Moderate Unreviewed
CVE-2018-5333 was published May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c. Critical Unreviewed
CVE-2017-11124 was published May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_get_path function in util.c. Critical Unreviewed
CVE-2017-11125 was published May 13, 2022
An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was... Moderate Unreviewed
CVE-2017-18230 was published May 13, 2022
An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was... Moderate Unreviewed
CVE-2017-18231 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and... High Unreviewed
CVE-2018-15930 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and... High Unreviewed
CVE-2018-15931 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and... High Unreviewed
CVE-2018-15937 was published May 13, 2022
libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference). High Unreviewed
CVE-2015-0928 was published May 13, 2022
The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-12950 was published May 13, 2022
FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer... High Unreviewed
CVE-2013-4118 was published May 13, 2022
FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL... High Unreviewed
CVE-2013-4119 was published May 13, 2022
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was... High Unreviewed
CVE-2018-11356 was published May 13, 2022
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors... High Unreviewed
CVE-2018-11359 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was... Moderate Unreviewed
CVE-2018-19624 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This... High Unreviewed
CVE-2018-18227 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database