Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,208 advisories

Loading
The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of... Moderate Unreviewed
CVE-2017-11664 was published May 13, 2022
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-7528 was published May 13, 2022
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds... Moderate Unreviewed
CVE-2016-7527 was published May 13, 2022
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of... Moderate Unreviewed
CVE-2016-7537 was published May 13, 2022
coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2016-10071 was published May 13, 2022
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4... Moderate Unreviewed
CVE-2016-10070 was published May 13, 2022
libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a... Moderate Unreviewed
CVE-2016-9598 was published May 13, 2022
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function... Moderate Unreviewed
CVE-2017-14633 was published May 13, 2022
In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the... Moderate Unreviewed
CVE-2019-9718 was published May 13, 2022
A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows attackers to hog the CPU... Moderate Unreviewed
CVE-2019-9721 was published May 13, 2022
The decode_init function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote... Moderate Unreviewed
CVE-2018-7557 was published May 13, 2022
The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly... Moderate Unreviewed
CVE-2017-17081 was published May 13, 2022
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service ... Moderate Unreviewed
CVE-2018-13096 was published May 13, 2022
An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service ... Moderate Unreviewed
CVE-2018-13099 was published May 13, 2022
The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0... Moderate Unreviewed
CVE-2018-19841 was published May 13, 2022
MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2014-4341 was published May 13, 2022
The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1... Moderate Unreviewed
CVE-2015-2697 was published May 13, 2022
The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5)... Moderate Unreviewed
CVE-2015-8629 was published May 13, 2022
LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based... Moderate Unreviewed
CVE-2017-15018 was published May 13, 2022
The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote... Moderate Unreviewed
CVE-2018-8975 was published May 13, 2022
JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900.14, 1.900.15, 1.900.16, 1... Moderate Unreviewed
CVE-2017-14132 was published May 13, 2022
The decode_frame function in libavcodec/utvideodec.c in FFmpeg through 3.2 allows remote... Moderate Unreviewed
CVE-2018-6621 was published May 13, 2022
LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based... Moderate Unreviewed
CVE-2017-15045 was published May 13, 2022
Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted... Moderate Unreviewed
CVE-2014-3675 was published May 13, 2022
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to... Moderate Unreviewed
CVE-2016-3178 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database