Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,454
Erlang
33
GitHub Actions
22
Go
2,153
Maven
5,000+
npm
3,818
NuGet
693
pip
3,492
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

930 advisories

Loading
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference... High Unreviewed
CVE-2014-9967 was published May 17, 2022
IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute... High Unreviewed
CVE-2016-4724 was published May 17, 2022
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer... High Unreviewed
CVE-2017-11100 was published May 17, 2022
Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2,... High Unreviewed
CVE-2017-0016 was published May 17, 2022
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to... High Unreviewed
CVE-2022-32230 was published Jun 15, 2022
In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL... High Unreviewed
CVE-2016-7053 was published May 17, 2022
There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0... High Unreviewed
CVE-2017-11590 was published May 17, 2022
The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed
CVE-2016-7080 was published May 17, 2022
A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file... High Unreviewed
CVE-2021-20299 was published Mar 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue... High Unreviewed
CVE-2016-4678 was published May 17, 2022
The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed
CVE-2016-7079 was published May 17, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where... High Unreviewed
CVE-2017-6252 was published May 17, 2022
Possible null pointer access due to improper validation of system information message to be... High Unreviewed
CVE-2021-35087 was published Jun 15, 2022
AppleEFIRuntime in Apple OS X before 10.12 allows attackers to execute arbitrary code in a... High Unreviewed
CVE-2016-4696 was published May 17, 2022
Possible null pointer dereference due to improper validation of RRC connection reconfiguration... High Unreviewed
CVE-2021-35076 was published Jun 15, 2022
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a NULL... High Unreviewed
CVE-2017-6257 was published May 17, 2022
The bfd_make_section_with_flags function in section.c in the Binary File Descriptor (BFD) library... High Unreviewed
CVE-2017-12457 was published May 17, 2022
A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G <... High Unreviewed
CVE-2021-39251 was published May 24, 2022
Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2021-28543 was published May 24, 2022
An issue was discovered in src/http/httpLib.c in EmbedThis Appweb Community Edition 8.2.1, allows... High Unreviewed
CVE-2021-33254 was published Jun 3, 2022
While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request... High Unreviewed
CVE-2021-41524 was published May 24, 2022
A denial-of-service vulnerability exists in the HTTP Server functionality of Micrium uC-HTTP 3.01... High Unreviewed
CVE-2020-13583 was published May 24, 2022
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS... High Unreviewed
CVE-2020-3517 was published May 24, 2022
Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via... High Unreviewed
CVE-2022-29694 was published Jun 3, 2022
In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c... High Unreviewed
CVE-2021-38604 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database