Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,863 advisories

Loading
The ModSecurity module before 2.7.4 for the Apache HTTP Server allows remote attackers to cause a... Moderate Unreviewed
CVE-2013-2765 was published May 13, 2022
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed... High Unreviewed
CVE-2017-1000050 was published May 13, 2022
huft_build in archival/libarchive/decompress_gunzip.c in BusyBox before 1.27.2 misuses a pointer,... Moderate Unreviewed
CVE-2015-9261 was published May 13, 2022
The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x before 2.5.3 SU1 allows remote... Moderate Unreviewed
CVE-2014-9323 was published May 13, 2022
LibTIFF 4.0.9 has a NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c. Moderate Unreviewed
CVE-2018-10126 was published May 13, 2022
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003... High Unreviewed
CVE-2011-1229 was published May 13, 2022
In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot... Moderate Unreviewed
CVE-2017-14926 was published May 13, 2022
In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Configuration:... Moderate Unreviewed
CVE-2017-14928 was published May 13, 2022
SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of Service (null pointer... High Unreviewed
CVE-2016-9562 was published May 13, 2022
In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c... Moderate Unreviewed
CVE-2018-16749 was published May 13, 2022
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2016-9559 was published May 13, 2022
Null Pointer Dereference in the IdentifyImage function in MagickCore/identify.c in ImageMagick... Moderate Unreviewed
CVE-2017-13768 was published May 13, 2022
ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the... Moderate Unreviewed
CVE-2017-1000445 was published May 13, 2022
NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the... Moderate Unreviewed
CVE-2018-10196 was published May 13, 2022
The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the... Moderate Unreviewed
CVE-2014-3581 was published May 13, 2022
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL... Critical Unreviewed
CVE-2017-3169 was published May 13, 2022
A maliciously constructed HTTP/2 request could cause mod_http2 in Apache HTTP Server 2.4.24, 2.4... High Unreviewed
CVE-2017-7659 was published May 13, 2022
When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version... Moderate Unreviewed
CVE-2018-1302 was published May 13, 2022
A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger... High Unreviewed
CVE-2017-9631 was published May 13, 2022
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer... High Unreviewed
CVE-2018-14613 was published May 13, 2022
The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2014-0190 was published May 13, 2022
In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header... High Unreviewed
CVE-2017-18189 was published May 13, 2022
The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4... High Unreviewed
CVE-2016-10087 was published May 13, 2022
The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer... High Unreviewed
CVE-2017-10790 was published May 13, 2022
In SQLite through 3.22.0, databases whose schema is corrupted using a CREATE TABLE AS statement... High Unreviewed
CVE-2018-8740 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database