GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,787

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,671 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gnttab_cache_flush` handles... Moderate Unreviewed

CVE-2017-14318 was published May 17, 2022

VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a guest RPC NULL... Moderate Unreviewed

CVE-2017-4938 was published May 17, 2022

The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h in the Linux kernel before 4.13.2 does not... Moderate Unreviewed

CVE-2017-14340 was published May 17, 2022

In HDF5 1.10.1, there is a NULL pointer dereference in the function H5O_pline_decode in the... Moderate Unreviewed

CVE-2017-17505 was published May 17, 2022

ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a... Moderate Unreviewed

CVE-2017-17113 was published May 17, 2022

GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer... Moderate Unreviewed

CVE-2017-17440 was published May 14, 2022

The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a... Moderate Unreviewed

CVE-2013-6954 was published May 14, 2022

bsdtar in libarchive before 3.2.0 returns a success code without filling the entry when the... Moderate Unreviewed

CVE-2015-8916 was published May 14, 2022

The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive... Moderate Unreviewed

CVE-2015-8926 was published May 14, 2022

The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2... Moderate Unreviewed

CVE-2015-8956 was published May 14, 2022

crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of... Moderate Unreviewed

CVE-2016-10147 was published May 14, 2022

The exif_process_user_comment function in ext/exif/exif.c in PHP before 5.5.38, 5.6.x before 5.6... Moderate Unreviewed

CVE-2016-6292 was published May 14, 2022

drivers/infiniband/ulp/srpt/ib_srpt.c in the Linux kernel before 4.5.1 allows local users to... Moderate Unreviewed

CVE-2016-6327 was published May 14, 2022

The hash_accept function in crypto/algif_hash.c in the Linux kernel before 4.3.6 allows local... Moderate Unreviewed

CVE-2016-8646 was published May 14, 2022

The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer 1.900.5 allows remote attackers to... Moderate Unreviewed

CVE-2016-8884 was published May 14, 2022

The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer before 1.900.9 allows remote... Moderate Unreviewed

CVE-2016-8885 was published May 14, 2022

The _parse_pat function in the mpegts parser in GStreamer before 1.10.2 allows remote attackers... Moderate Unreviewed

CVE-2016-9813 was published May 14, 2022

Type confusion in Histogram in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac,... Moderate Unreviewed

CVE-2017-5023 was published May 14, 2022

The keyring_search_aux function in security/keys/keyring.c in the Linux kernel through 3.14.79... Moderate Unreviewed

CVE-2017-6951 was published May 14, 2022

The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote... Moderate Unreviewed

CVE-2017-7207 was published May 14, 2022

read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed

CVE-2017-15023 was published May 14, 2022

The dump_section_as_bytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while... Moderate Unreviewed

CVE-2017-7209 was published May 14, 2022

dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils... Moderate Unreviewed

CVE-2017-15939 was published May 14, 2022

Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in value.cpp,... Moderate Unreviewed

CVE-2017-18005 was published May 14, 2022

The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows remote attackers to cause... Moderate Unreviewed

CVE-2017-9608 was published May 14, 2022

Previous 1…88…107 Next

Previous 1 2 … 86 87 88 89 90 … 106 107 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,671 advisories