Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,704 advisories

Loading
In Bento4 1.6.0-638, there is a null pointer reference in the function... Moderate Unreviewed
CVE-2021-40943 was published Jun 29, 2022
In GPAC MP4Box 1.1.0, there is a Null pointer reference in the function gf_filter_pid_get_packet... Moderate Unreviewed
CVE-2021-40944 was published Jun 29, 2022
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. Moderate Unreviewed
CVE-2022-2231 was published Jun 29, 2022
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2. Moderate Unreviewed
CVE-2022-2208 was published Jun 28, 2022
CloudCore UDS Server: Malicious Message can crash CloudCore Moderate
CVE-2022-31076 was published for github.com/kubeedge/kubeedge (Go) Jun 25, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
CloudCore CSI Driver: Malicious response from KubeEdge can crash CSI Driver controller server Moderate
CVE-2022-31077 was published for github.com/kubeedge/kubeedge (Go) Jun 25, 2022
DavidKorczynski AdamKorcz
Credited to DavidKorczynski and AdamKorcz
OFFIS DCMTK's (All versions prior to 3.6.7) has a NULL pointer dereference vulnerability while... Moderate Unreviewed
CVE-2022-2121 was published Jun 25, 2022
A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to... Moderate Unreviewed
CVE-2022-2085 was published Jun 17, 2022
The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful... Moderate Unreviewed
CVE-2022-31763 was published Jun 14, 2022
In libjpeg 1.63, there is a NULL pointer dereference in Component::SubXOf in component.hpp. Moderate Unreviewed
CVE-2022-32201 was published Jun 3, 2022
In libjpeg 1.63, there is a NULL pointer dereference in LineBuffer::FetchRegion in linebuffer.cpp. Moderate Unreviewed
CVE-2022-32202 was published Jun 3, 2022
libmobi before v0.10 contains a NULL pointer dereference via the component mobi_buffer_getpointer... Moderate Unreviewed
CVE-2022-29788 was published Jun 3, 2022
With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If... Moderate Unreviewed
CVE-2022-1789 was published Jun 3, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42198 was published Jun 3, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42202 was published Jun 3, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42200 was published Jun 3, 2022
An issue was discovered in swftools through 20201222. A NULL pointer dereference exists in the... Moderate Unreviewed
CVE-2021-42196 was published Jun 3, 2022
radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p... Moderate Unreviewed
CVE-2021-44974 was published May 26, 2022
A NULL pointer dereference flaw was found in the Linux kernel’s GPU Nouveau driver functionality... Moderate Unreviewed
CVE-2020-25639 was published May 24, 2022
Missing validation results in undefined behavior in `SparseTensorDenseAdd Moderate
CVE-2022-29206 was published for tensorflow (pip) May 24, 2022
Segfault due to missing support for quantized types Moderate
CVE-2022-29205 was published for tensorflow (pip) May 24, 2022
Missing validation results in undefined behavior in `QuantizedConv2D` Moderate
CVE-2022-29201 was published for tensorflow (pip) May 24, 2022
marc-q libwav through 2019-08-15 has a NULL pointer dereference in gain_file() at wav_gain.c. Moderate Unreviewed
CVE-2019-16348 was published May 24, 2022
http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service (crash... Moderate Unreviewed
CVE-2019-13114 was published May 24, 2022
Adobe InCopy version 16.4 (and earlier) is affected by a Null pointer dereference vulnerability... Moderate Unreviewed
CVE-2021-43016 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database