GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,209 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The PoDoFo::PdfPainter::ExpandTabs function in PdfPainter.cpp in PoDoFo 0.9.5 allows remote... Moderate Unreviewed

CVE-2017-7378 was published May 13, 2022

The ConvertToPDF plugin in Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 on Windows, when... Moderate Unreviewed

CVE-2017-6883 was published May 13, 2022

The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote... Moderate Unreviewed

CVE-2017-6829 was published May 13, 2022

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16... Moderate Unreviewed

CVE-2017-6615 was published May 13, 2022

OpenSSL 1.0.2 (starting from version 1.0.2b) introduced an "error state" mechanism. The intent... Moderate Unreviewed

CVE-2017-3737 was published May 13, 2022

The pcm_encode_frame function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause... Moderate Unreviewed

CVE-2017-18246 was published May 13, 2022

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read in the function... Moderate Unreviewed

CVE-2017-17812 was published May 13, 2022

There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of... Moderate Unreviewed

CVE-2017-17669 was published May 13, 2022

In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStructure... Moderate Unreviewed

CVE-2017-17724 was published May 13, 2022

SCCPX module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10;... Moderate Unreviewed

CVE-2017-17218 was published May 13, 2022

elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2... Moderate Unreviewed

CVE-2017-17080 was published May 13, 2022

The png_load function in lib/png.c in SWFTools 0.9.2 does not properly validate a multiplication... Moderate Unreviewed

CVE-2017-16794 was published May 13, 2022

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from... Moderate Unreviewed

CVE-2017-15853 was published May 13, 2022

In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from... Moderate Unreviewed

CVE-2017-15837 was published May 13, 2022

bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed

CVE-2017-15021 was published May 13, 2022

decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed

CVE-2017-14939 was published May 13, 2022

ExifImageFile::readDQT in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to... Moderate Unreviewed

CVE-2017-14931 was published May 13, 2022

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Moderate Unreviewed

CVE-2017-14903 was published May 13, 2022

In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the... Moderate Unreviewed

CVE-2017-14905 was published May 13, 2022

There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image... Moderate Unreviewed

CVE-2017-14860 was published May 13, 2022

ofx_proc_file in ofx_preproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of... Moderate Unreviewed

CVE-2017-14731 was published May 13, 2022

ReadRLEImage in coders/rle.c in GraphicsMagick 1.3.26 mishandles RLE headers that specify too few... Moderate Unreviewed

CVE-2017-14733 was published May 13, 2022

The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect... Moderate Unreviewed

CVE-2017-14643 was published May 13, 2022

A heap-based buffer over-read was discovered in AP4_BitStream::ReadBytes in Codecs/Ap4BitStream... Moderate Unreviewed

CVE-2017-14645 was published May 13, 2022

The pe_print_idata function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd... Moderate Unreviewed

CVE-2017-14529 was published May 13, 2022

Previous 1…108…129 Next

Previous 1 2 … 106 107 108 109 110 … 128 129 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,209 advisories