Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

551 advisories

Loading
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function... Moderate Unreviewed
CVE-2022-35205 was published Aug 22, 2023
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2021-46179 was published Aug 22, 2023
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by... Moderate Unreviewed
CVE-2021-31294 was published Jul 16, 2023
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook... Moderate Unreviewed
CVE-2023-37836 was published Jul 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34867 was published Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34868 was published Jun 14, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from... High Unreviewed
CVE-2022-40538 was published Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration. High Unreviewed
CVE-2022-33251 was published Jun 6, 2023
Assertion occurs while processing Reconfiguration message due to improper validation High Unreviewed
CVE-2022-22060 was published Jun 6, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be... High Unreviewed
CVE-2023-23759 was published May 19, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31921 was published May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop... Moderate Unreviewed
CVE-2023-31920 was published May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31916 was published May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31919 was published May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31918 was published May 12, 2023
Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component... Moderate Unreviewed
CVE-2023-31913 was published May 12, 2023
llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements... Moderate Unreviewed
CVE-2023-29935 was published May 5, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross... High Unreviewed
CVE-2022-40508 was published May 2, 2023
Transient DOS due to reachable assertion in Modem during OSI decode scheduling. High Unreviewed
CVE-2022-34144 was published May 2, 2023
In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.11.21-S1... Moderate Unreviewed
CVE-2020-8622 was published May 24, 2022
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;... High Unreviewed
CVE-2018-5735 was published May 24, 2022
A defect in code added to support QNAME minimization can cause named to exit with an assertion... High Unreviewed
CVE-2019-6476 was published May 24, 2022
A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit... Moderate Unreviewed
CVE-2019-6472 was published May 24, 2022
An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea... Moderate Unreviewed
CVE-2019-6473 was published May 24, 2022
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit... High Unreviewed
CVE-2019-6469 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database