Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,929 advisories

Loading
Possible null pointer dereference due to improper validation of RRC connection reconfiguration... High Unreviewed
CVE-2021-35076 was published Jun 15, 2022
The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful... Moderate Unreviewed
CVE-2022-31763 was published Jun 14, 2022
NULL Pointer Dereference in Conda vim prior to 8.2. Moderate Unreviewed
CVE-2022-0696 was published Feb 22, 2022
AppleEFIRuntime in Apple OS X before 10.12 allows attackers to execute arbitrary code in a... High Unreviewed
CVE-2016-4696 was published May 17, 2022
Possible null pointer access due to improper validation of system information message to be... High Unreviewed
CVE-2021-35087 was published Jun 15, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where... High Unreviewed
CVE-2017-6252 was published May 17, 2022
The WriteOnePNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0... Moderate Unreviewed
CVE-2017-11522 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Moderate Unreviewed
CVE-2016-7604 was published May 17, 2022
The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-11550 was published May 17, 2022
The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote... Moderate Unreviewed
CVE-2017-11750 was published May 17, 2022
The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed
CVE-2016-7079 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue... High Unreviewed
CVE-2016-4678 was published May 17, 2022
A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file... High Unreviewed
CVE-2021-20299 was published Mar 17, 2022
The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed
CVE-2016-7080 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue... Moderate Unreviewed
CVE-2017-2388 was published May 17, 2022
There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0... High Unreviewed
CVE-2017-11590 was published May 17, 2022
CloudCore CSI Driver: Malicious response from KubeEdge can crash CSI Driver controller server Moderate
CVE-2022-31077 was published for github.com/kubeedge/kubeedge (Go) Jun 25, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
CloudCore UDS Server: Malicious Message can crash CloudCore Moderate
CVE-2022-31076 was published for github.com/kubeedge/kubeedge (Go) Jun 25, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL... High Unreviewed
CVE-2016-7053 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Moderate Unreviewed
CVE-2016-7603 was published May 17, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Moderate Unreviewed
CVE-2016-7609 was published May 17, 2022
Microsoft Windows SMBv3 suffers from a null pointer dereference in versions of Windows prior to... High Unreviewed
CVE-2022-32230 was published Jun 15, 2022
Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2,... High Unreviewed
CVE-2017-0016 was published May 17, 2022
The vrend_decode_reset function in vrend_decode.c in virglrenderer before 0.6.0 allows local... Moderate Unreviewed
CVE-2017-6210 was published May 17, 2022
When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer... High Unreviewed
CVE-2017-11100 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database