GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
185 advisories
Filter by severity
A Denial of Service vulnerability exits in Binaryen 103 due to an assertion abort in wasm:...
High
Unreviewed
CVE-2021-45290
was published
Dec 22, 2021
Possible assertion in QOS request due to improper validation when multiple add or update request...
High
Unreviewed
CVE-2021-30335
was published
Jan 4, 2022
Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto,...
High
Unreviewed
CVE-2021-30293
was published
Jan 4, 2022
Possible assertion due to improper handling of IPV6 packet with invalid length in destination...
High
Unreviewed
CVE-2021-30273
was published
Jan 4, 2022
There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1...
High
Unreviewed
CVE-2021-36409
was published
Jan 12, 2022
Improper validation of function pointer type with actual function signature can lead to assertion...
High
Unreviewed
CVE-2021-30353
was published
Jan 14, 2022
Possible denial of service due to improper validation of DNS response when DNS client requests...
High
Unreviewed
CVE-2021-30307
was published
Jan 14, 2022
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in...
High
Unreviewed
CVE-2021-30287
was published
Jan 14, 2022
MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a...
High
Unreviewed
CVE-2021-46666
was published
Feb 2, 2022
Possible assertion due to improper size validation while processing the DownlinkPreemption IE in...
High
Unreviewed
CVE-2021-30326
was published
Feb 12, 2022
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
High
Unreviewed
CVE-2022-0667
was published
Mar 23, 2022
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific...
High
Unreviewed
CVE-2022-0635
was published
Mar 24, 2022
Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon...
High
Unreviewed
CVE-2021-30332
was published
Apr 2, 2022
Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon...
High
Unreviewed
CVE-2021-30329
was published
Apr 2, 2022
Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in...
High
Unreviewed
CVE-2021-30328
was published
Apr 2, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component...
High
Unreviewed
CVE-2022-27382
was published
Apr 13, 2022
There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos ==...
High
Unreviewed
CVE-2022-27448
was published
Apr 15, 2022
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of...
High
Unreviewed
CVE-2022-20694
was published
Apr 16, 2022
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT...
High
Unreviewed
CVE-2011-3596
was published
Apr 22, 2022
oftpd before 0.3.7 allows remote attackers to cause a denial of service (daemon abort) via a (1)...
High
Unreviewed
CVE-2006-6767
was published
May 1, 2022
In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed...
High
Unreviewed
CVE-2022-29339
was published
May 6, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and...
High
Unreviewed
CVE-2021-27498
was published
May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and...
High
Unreviewed
CVE-2021-27500
was published
May 13, 2022
"deny-answer-aliases" is a little-used feature intended to help recursive server operators...
High
Unreviewed
CVE-2018-5740
was published
May 13, 2022
An assertion-failure flaw was found in Qemu before 2.10.1, in the Network Block Device (NBD)...
High
Unreviewed
CVE-2017-7539
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API