Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,874 advisories

Loading
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in... Moderate Unreviewed
CVE-2021-33455 was published Jul 27, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33441 was published Jul 27, 2022
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in find_cc()... Moderate Unreviewed
CVE-2021-33458 was published Jul 27, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33444 was published Jul 27, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33446 was published Jul 27, 2022
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in... Moderate Unreviewed
CVE-2021-33460 was published Jul 27, 2022
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in... Moderate Unreviewed
CVE-2021-33459 was published Jul 27, 2022
The PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in PoDoFo 0.9.5 allows remote... Moderate Unreviewed
CVE-2017-6848 was published May 17, 2022
The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote... Moderate Unreviewed
CVE-2017-5855 was published May 17, 2022
The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 allows remote attackers to... Moderate Unreviewed
CVE-2016-7477 was published May 17, 2022
A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15... Moderate Unreviewed
CVE-2022-32785 was published Sep 25, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33442 was published Jul 27, 2022
NULL Pointer Dereference in GitHub repository gpac/gpac prior to v2.1.0-DEV. Moderate Unreviewed
CVE-2022-2549 was published Jul 28, 2022
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in... Moderate Unreviewed
CVE-2021-33454 was published Jul 27, 2022
The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to... Moderate Unreviewed
CVE-2016-8694 was published May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote... Moderate Unreviewed
CVE-2016-9623 was published May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote... Moderate Unreviewed
CVE-2016-9629 was published May 17, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33445 was published Jul 27, 2022
PicoC v3.2.2 was discovered to contain a NULL pointer dereference at variable.c. Moderate Unreviewed
CVE-2022-34556 was published Jul 29, 2022
The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types,... Moderate Unreviewed
CVE-2016-5354 was published May 17, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33440 was published Jul 27, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33449 was published Jul 27, 2022
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in... Moderate Unreviewed
CVE-2021-33457 was published Jul 27, 2022
An error within the "tar_directory_for_file()" function (gsf-infile-tar.c) in GNOME Structured... Moderate Unreviewed
CVE-2016-9888 was published May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote... Moderate Unreviewed
CVE-2016-9624 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database