Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

471 advisories

Loading
There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd() in LibTIFF 4.0... Moderate Unreviewed
CVE-2017-13727 was published May 13, 2022
The vga display update in mis-calculated the region for the dirty bitmap snapshot in case split... Moderate Unreviewed
CVE-2017-13673 was published May 13, 2022
In ImageMagick 7.0.6-8, the WritePDFImage function in coders/pdf.c operates on an incorrect data... Moderate Unreviewed
CVE-2017-13132 was published May 13, 2022
There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of... High Unreviewed
CVE-2017-12960 was published May 13, 2022
There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the... High Unreviewed
CVE-2017-12959 was published May 13, 2022
In ImageMagick 7.0.6-1, a missing NULL check vulnerability was found in the function ReadMATImage... Moderate Unreviewed
CVE-2017-12434 was published May 13, 2022
There is a reachable assertion in the Internal::TiffReader::visitDirectory function in... Moderate Unreviewed
CVE-2017-11683 was published May 13, 2022
The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0... Moderate Unreviewed
CVE-2017-11524 was published May 13, 2022
The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure... High Unreviewed
CVE-2017-0376 was published May 13, 2022
The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure... High Unreviewed
CVE-2017-0375 was published May 13, 2022
The access_pmu_evcntr function in arch/arm64/kvm/sys_regs.c in the Linux kernel before 4.8.11... Moderate Unreviewed
CVE-2017-12168 was published May 13, 2022
Mistaken assumptions about the ordering of records in the answer section of a response containing... High Unreviewed
CVE-2017-3137 was published May 13, 2022
named contains a feature which allows operators to issue commands to a running server by... Moderate Unreviewed
CVE-2017-3138 was published May 13, 2022
A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an... High Unreviewed
CVE-2018-5737 was published May 13, 2022
While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode... High Unreviewed
CVE-2018-5734 was published May 13, 2022
In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion... Moderate Unreviewed
CVE-2017-11368 was published May 13, 2022
** DISPUTED ** The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in... High Unreviewed
CVE-2018-7713 was published May 13, 2022
** DISPUTED ** The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in... High Unreviewed
CVE-2018-7714 was published May 13, 2022
** DISPUTED ** The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in... High Unreviewed
CVE-2018-7712 was published May 13, 2022
An assertion failure was discovered in wasm::WasmBinaryBuilder::getType() in wasm-binary.cpp in... High Unreviewed
CVE-2019-7662 was published May 13, 2022
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote... High Unreviewed
CVE-2017-11692 was published May 13, 2022
Google Chrome before 6.0.472.59 on Linux does not properly handle cursors, which might allow... Moderate Unreviewed
CVE-2010-3411 was published May 13, 2022
named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1... High Unreviewed
CVE-2016-8864 was published May 13, 2022
An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify... Moderate Unreviewed
CVE-2017-18252 was published May 13, 2022
There is a reachable assertion abort in the function write_long_string_missing_values() in data... Moderate Unreviewed
CVE-2019-9211 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database