Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

904 advisories

Loading
The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4... High Unreviewed
CVE-2016-10087 was published May 13, 2022
The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer... High Unreviewed
CVE-2017-10790 was published May 13, 2022
In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement... High Unreviewed
CVE-2018-8740 was published May 13, 2022
pax_decode_header in sparse.c in GNU Tar before 1.32 had a NULL pointer dereference when parsing... High Unreviewed
CVE-2019-9923 was published May 13, 2022
The regset (aka register set) feature in the Linux kernel before 3.2.10 does not properly handle... High Unreviewed
CVE-2012-1097 was published May 13, 2022
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X;... High Unreviewed
CVE-2012-2039 was published May 13, 2022
sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer... High Unreviewed
CVE-2016-10708 was published May 13, 2022
In Eclipse Mosquitto version from 1.0 to 1.4.15, a Null Dereference vulnerability was found in... High Unreviewed
CVE-2017-7655 was published May 13, 2022
os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to... High Unreviewed
CVE-2016-4450 was published May 13, 2022
The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a... High Unreviewed
CVE-2016-0742 was published May 13, 2022
systemd-resolved through 233 allows remote attackers to cause a denial of service (daemon crash)... High Unreviewed
CVE-2017-9217 was published May 13, 2022
dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2016-5041 was published May 13, 2022
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function... High Unreviewed
CVE-2019-8376 was published May 13, 2022
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function... High Unreviewed
CVE-2019-8377 was published May 13, 2022
An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the... High Unreviewed
CVE-2019-8379 was published May 13, 2022
An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The... High Unreviewed
CVE-2017-5991 was published May 13, 2022
A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x69).... High Unreviewed
CVE-2018-3841 was published May 13, 2022
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR... High Unreviewed
CVE-2017-14436 was published May 13, 2022
An exploitable NULL pointer dereference vulnerability exists in the tinysvcmdns library version... High Unreviewed
CVE-2017-12130 was published May 13, 2022
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR... High Unreviewed
CVE-2017-14435 was published May 13, 2022
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR... High Unreviewed
CVE-2017-14437 was published May 13, 2022
An exploitable NULL pointer dereference vulnerability exists in the MQTT packet parsing... High Unreviewed
CVE-2017-2893 was published May 13, 2022
An exploitable null pointer dereference exists in the Web Application functionality of Moxa AWK... High Unreviewed
CVE-2016-8723 was published May 13, 2022
An exploitable null pointer dereference vulnerability exists in the Web Application /forms... High Unreviewed
CVE-2016-8726 was published May 13, 2022
An exploitable denial-of-service vulnerability exists in the fabric-worker component of Aerospike... High Unreviewed
CVE-2016-9049 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database