GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
81 advisories
Filter by severity
A user authorized to perform database queries may trigger denial of service by issuing specially...
Moderate
Unreviewed
CVE-2018-20805
was published
May 24, 2022
A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and...
Moderate
Unreviewed
CVE-2020-14303
was published
May 24, 2022
In the Accounts package, there is a possible crash due to improper input validation. This could...
Moderate
Unreviewed
CVE-2019-9376
was published
May 24, 2022
In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1...
Moderate
Unreviewed
CVE-2019-12973
was published
May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of...
High
Unreviewed
CVE-2019-3559
was published
May 24, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop...
High
Unreviewed
CVE-2018-9261
was published
May 13, 2022
libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the...
Moderate
Unreviewed
CVE-2018-5252
was published
May 13, 2022
An issue was discovered in Xpdf 4.00. catalog->getNumPages() in AcroForm.cc allows attackers to...
Moderate
Unreviewed
CVE-2018-18651
was published
May 13, 2022
The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9256
was published
May 13, 2022
The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9257
was published
May 13, 2022
The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9254
was published
May 13, 2022
The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9255
was published
May 13, 2022
The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ...
High
Unreviewed
CVE-2017-9253
was published
May 13, 2022
A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to...
Moderate
Unreviewed
CVE-2017-2330
was published
May 13, 2022
In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File)...
High
Unreviewed
CVE-2017-14222
was published
May 13, 2022
In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause...
High
Unreviewed
CVE-2017-14057
was published
May 13, 2022
In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and...
High
Unreviewed
CVE-2017-14059
was published
May 13, 2022
In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14056
was published
May 13, 2022
In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14054
was published
May 13, 2022
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of...
High
Unreviewed
CVE-2017-14055
was published
May 13, 2022
In M3UParser::parse of M3UParser.cpp, there is a memory resource exhaustion due to a large loop...
Moderate
Unreviewed
CVE-2017-13279
was published
May 13, 2022
ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.
High
Unreviewed
CVE-2017-12587
was published
May 13, 2022
The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a...
High
Unreviewed
CVE-2017-11549
was published
May 13, 2022
The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6...
High
Unreviewed
CVE-2017-11505
was published
May 13, 2022
In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was...
High
Unreviewed
CVE-2017-11409
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API