Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,040 advisories

Loading
Apache Tomcat Denial of Service vulnerability Moderate
CVE-2013-4322 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Credited to sunSUNQ
Integer Overflow or Wraparound in Apache Tomcat Moderate
CVE-2014-0075 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Credited to sunSUNQ
Uncontrolled Resource Consumption in Apache Tomcat High
CVE-2014-0230 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
Credited to sunSUNQ
ImageMagick 7.0.6-6 has a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c via a... Moderate Unreviewed
CVE-2017-14342 was published May 14, 2022
In LibTIFF 4.0.9, there is an uncontrolled resource consumption in the TIFFSetDirectory function... Moderate Unreviewed
CVE-2018-5784 was published May 14, 2022
RubyGems Regular Expression Denial of Service vulnerability Moderate
CVE-2013-4287 was published for rubygems-update (RubyGems) May 14, 2022
When FW tries to get random mac address generated from new SW RNG and ADC values read are... High Unreviewed
CVE-2018-11828 was published May 14, 2022
ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has an issue where memory allocation is... High Unreviewed
CVE-2017-14137 was published May 14, 2022
SEL AcSELerator Architect version 2.2.24.0 and prior can be exploited when the AcSELerator... High Unreviewed
CVE-2018-10608 was published May 14, 2022
An error within the "parse_sinar_ia()" function (internal/dcraw_common.cpp) within LibRaw... High Unreviewed
CVE-2018-5819 was published May 14, 2022
In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2018-19881 was published May 14, 2022
In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36... High Unreviewed
CVE-2018-15607 was published May 14, 2022
Puppet Denial of Service and Arbitrary File Write Low
CVE-2012-1987 was published for puppet (RubyGems) May 14, 2022
In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0... High Unreviewed
CVE-2018-8777 was published May 14, 2022
In LibSass prior to 3.5.5, Sass::Eval::operator()(Sass::Binary_Expression*) inside eval.cpp... Moderate Unreviewed
CVE-2018-19837 was published May 14, 2022
In LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow... Moderate Unreviewed
CVE-2018-19838 was published May 14, 2022
Mikrotik RouterOS before 6.42.7 and 6.40.9 is vulnerable to a memory exhaustion vulnerability. An... Moderate Unreviewed
CVE-2018-1157 was published May 14, 2022
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which... Moderate Unreviewed
CVE-2018-15853 was published May 14, 2022
CiffDirectory::readDirectory() at crwimage_int.cpp in Exiv2 0.26 has excessive stack consumption... Moderate Unreviewed
CVE-2018-17581 was published May 14, 2022
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size... High Unreviewed
CVE-2018-20169 was published May 14, 2022
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows... Moderate Unreviewed
CVE-2017-7940 was published May 13, 2022
** DISPUTED ** Header::readfrom in IlmImf/ImfHeader.cpp in OpenEXR 2.2.0 allows remote attackers... Moderate Unreviewed
CVE-2017-14988 was published May 13, 2022
When there are multiple ranges in a range request, Apache Traffic Server (ATS) will read the... Moderate Unreviewed
CVE-2018-8005 was published May 13, 2022
phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a... High Unreviewed
CVE-2018-5954 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10... High Unreviewed
CVE-2018-4100 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database