Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,670 advisories

Loading
NULL pointer deference in the addsn function in serialno.c in libbibcore.a in bibutils through 6... Moderate Unreviewed
CVE-2018-10773 was published May 14, 2022
HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to... Moderate Unreviewed
CVE-2018-8060 was published May 14, 2022
A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5... Moderate Unreviewed
CVE-2018-11204 was published May 14, 2022
An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in... Moderate Unreviewed
CVE-2018-11255 was published May 14, 2022
An issue was discovered in PoDoFo 0.9.5. The function PdfDocument::Append() in PdfDocument.cpp in... Moderate Unreviewed
CVE-2018-11256 was published May 14, 2022
A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1... Moderate Unreviewed
CVE-2018-11202 was published May 14, 2022
A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 HFv1 allows an authenticated... Moderate Unreviewed
CVE-2018-10241 was published May 14, 2022
VMware Workstation (14.x before 14.1.2) and Fusion (10.x before 10.1.2) contain multiple denial... Moderate Unreviewed
CVE-2018-6963 was published May 14, 2022
The jp2_colr_destroy function in libjasper/jp2/jp2_cod.c in JasPer before 1.900.10 allows remote... Moderate Unreviewed
CVE-2016-8887 was published May 14, 2022
The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to... Moderate Unreviewed
CVE-2017-6850 was published May 14, 2022
libjpeg-turbo 1.5.2 has a NULL Pointer Dereference in jdpostct.c and jquant1.c via a crafted JPEG... Moderate Unreviewed
CVE-2017-15232 was published May 14, 2022
The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel... Moderate Unreviewed
CVE-2017-12193 was published May 14, 2022
In FFmpeg 4.0.1, due to a missing check of a profile value before setting it, the... Moderate Unreviewed
CVE-2018-13301 was published May 14, 2022
In FFmpeg 4.0.1, a missing check for failure of a call to init_get_bits8() in the... Moderate Unreviewed
CVE-2018-13303 was published May 14, 2022
md4c 0.2.6 has a NULL pointer dereference in the function md_process_line in md4c.c, related to... Moderate Unreviewed
CVE-2018-12102 was published May 14, 2022
libavcodec in FFmpeg 4.0 may trigger a NULL pointer dereference if the studio profile is... Moderate Unreviewed
CVE-2018-12460 was published May 14, 2022
An issue was discovered in ImageMagick 7.0.7. A NULL pointer dereference vulnerability was found... Moderate Unreviewed
CVE-2017-18250 was published May 14, 2022
crypto/algif_skcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation... Moderate Unreviewed
CVE-2015-8970 was published May 14, 2022
The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as... Moderate Unreviewed
CVE-2017-17555 was published May 14, 2022
Aubio is vulnerable to a NULL pointer dereference Moderate
CVE-2017-17554 was published for aubio (pip) May 14, 2022
An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The pre-defined function ... Moderate Unreviewed
CVE-2018-5710 was published May 14, 2022
In the Linux kernel 4.15.0, a NULL pointer dereference was discovered in hfs_ext_read_extent in... Moderate Unreviewed
CVE-2018-12928 was published May 14, 2022
dwg_obj_block_control_get_block_headers in dwg_api.c in GNU LibreDWG 0.5.1048 allows remote... Moderate Unreviewed
CVE-2018-14471 was published May 14, 2022
libming 0.4.8 has a NULL pointer dereference in the getString function of the decompile.c file,... Moderate Unreviewed
CVE-2018-13250 was published May 14, 2022
Codec::parse in track.cpp in Untrunc through 2018-06-07 has a NULL pointer dereference via a... Moderate Unreviewed
CVE-2018-14448 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database