Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

549 advisories

Loading
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... Moderate Unreviewed
CVE-2025-52958 was published Jul 11, 2025
In the Linux kernel, the following vulnerability has been resolved: btrfs: don't drop extent_map... Moderate Unreviewed
CVE-2024-26726 was published Apr 3, 2024
A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.5. This... Moderate Unreviewed
CVE-2025-6952 was published Jul 1, 2025
In SoX 14.4.2, there is an assertion failure in rate_init in rate.c in libsox.a. High Unreviewed
CVE-2022-31651 was published May 26, 2022
A vulnerability has been found in Tarantool up to 3.3.1 and classified as problematic. Affected... Moderate Unreviewed
CVE-2025-6536 was published Jun 26, 2025
A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue... Moderate Unreviewed
CVE-2025-6497 was published Jun 23, 2025
A vulnerability was found in WebAssembly wabt up to 1.0.37 and classified as problematic. This... Moderate Unreviewed
CVE-2025-6273 was published Jun 19, 2025
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... High Unreviewed
CVE-2021-3326 was published May 24, 2022
A vulnerability was found in Open5GS up to 2.7.3. It has been classified as problematic. Affected... Moderate Unreviewed
CVE-2025-5520 was published Jun 3, 2025
A vulnerability classified as problematic was found in Open5GS up to 2.7.3. Affected by this... Moderate Unreviewed
CVE-2025-5501 was published Jun 3, 2025
Due to an unchecked buffer length, a specially crafted L2CAP packet can cause a buffer overflow.... Moderate Unreviewed
CVE-2024-7139 was published Dec 19, 2024
An assert may be triggered, causing a temporary denial of service when a peer device sends a... Moderate Unreviewed
CVE-2024-7138 was published Dec 19, 2024
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between... Moderate Unreviewed
CVE-2021-47351 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: dma-buf/sync_file: Don't... Moderate Unreviewed
CVE-2021-47305 was published May 21, 2024
In the Linux kernel, the following vulnerability has been resolved: memory: fsl_ifc: fix leak of... Moderate Unreviewed
CVE-2021-47315 was published May 21, 2024
In Modem, there is a possible system crash due to an uncaught exception. This could lead to... High Unreviewed
CVE-2025-20666 was published May 5, 2025
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function... Moderate Unreviewed
CVE-2024-3567 was published Apr 10, 2024
libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a denial of service ... Low Unreviewed
CVE-2025-47229 was published May 3, 2025
wasmtime has a runtime crash when combining tail calls with trapping imports Moderate
CVE-2024-47763 was published for wasmtime (Rust) Oct 9, 2024
alexcrichton fitzgen
Credited to alexcrichton and fitzgen
An issue in UPF in Open5GS UPF versions up to v2.7.2 results an assertion failure vulnerability... High Unreviewed
CVE-2025-29339 was published Apr 22, 2025
RADOS Gateway in Ceph 12.1.0 through 12.2.1 allows remote authenticated users to cause a denial... Moderate Unreviewed
CVE-2017-16818 was published May 13, 2022
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG... Moderate Unreviewed
CVE-2017-14649 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dequantize() in jpc/jpc_dec.c in JasPer... High Unreviewed
CVE-2017-13752 was published May 13, 2022
The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split... Moderate Unreviewed
CVE-2017-13673 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database