Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,738
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,765 advisories

Loading
Mikrotik RouterOs before stable 6.48.2 suffers from a memory corruption vulnerability in the ptp... Moderate Unreviewed
CVE-2021-36613 was published May 12, 2022
Null pointer dereference in libr/bin/format/mach0/mach0.c in radareorg/radare2 in GitHub... Moderate Unreviewed
CVE-2022-1649 was published May 11, 2022
A NULL pointer dereference flaw was found in the Linux kernel’s X.25 set of standardized network... Moderate Unreviewed
CVE-2022-1516 was published May 6, 2022
Foxit PDF Reader v11.2.1.53537 was discovered to contain a NULL pointer dereference via the... Moderate Unreviewed
CVE-2022-27359 was published May 6, 2022
slim has NULL pointer dereference when using crypt() method from glibc 2.17 Moderate Unreviewed
CVE-2013-4412 was published May 5, 2022
On May 4, 2022, the following vulnerability in the ClamAV scanning library versions 0.103.5 and... Moderate Unreviewed
CVE-2022-20796 was published May 5, 2022
XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer dereference vulnerability when... Moderate Unreviewed
CVE-2021-42528 was published May 4, 2022
The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2... Moderate Unreviewed
CVE-2009-1387 was published May 3, 2022
ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL... Moderate Unreviewed
CVE-2009-1386 was published May 3, 2022
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8... Moderate Unreviewed
CVE-2006-4343 was published May 3, 2022
ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via... Moderate Unreviewed
CVE-2006-2661 was published May 3, 2022
The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5... Moderate Unreviewed
CVE-2010-1321 was published May 2, 2022
The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1... Moderate Unreviewed
CVE-2010-1187 was published May 2, 2022
The cifs_create function in fs/cifs/dir.c in the Linux kernel 2.6.33.2 and earlier allows local... Moderate Unreviewed
CVE-2010-1148 was published May 2, 2022
The ip_evictor function in ip_fragment.c in libnids before 1.24, as used in dsniff and possibly... Moderate Unreviewed
CVE-2010-0751 was published May 2, 2022
The ATI Rage 128 (aka r128) driver in the Linux kernel before 2.6.31-git11 does not properly... Moderate Unreviewed
CVE-2009-3620 was published May 2, 2022
The kvm_arch_vcpu_ioctl_set_sregs function in the KVM in Linux kernel 2.6 before 2.6.30, when... Moderate Unreviewed
CVE-2009-2287 was published May 2, 2022
The multipart processor in ModSecurity before 2.5.9 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2009-1902 was published May 2, 2022
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize... Moderate Unreviewed
CVE-2009-0949 was published May 2, 2022
Skulltag before 0.97d2-RC6 allows remote attackers to cause a denial of service (NULL pointer... Moderate Unreviewed
CVE-2008-3597 was published May 2, 2022
OpenSSL 0.9.8f and 0.9.8g allows remote attackers to cause a denial of service (crash) via a TLS... Moderate Unreviewed
CVE-2008-1672 was published May 1, 2022
FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a... Moderate Unreviewed
CVE-2006-6565 was published May 1, 2022
The huft_build function in inflate.c in the zlib routines in the Linux kernel before 2.6.12.5... Moderate Unreviewed
CVE-2005-2459 was published May 1, 2022
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for... Moderate Unreviewed
CVE-2005-0772 was published May 1, 2022
SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when... Moderate Unreviewed
CVE-2002-1912 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database