GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,487

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,019 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM... High Unreviewed

CVE-2015-9000 was published May 17, 2022

The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a... High Unreviewed

CVE-2016-4912 was published May 17, 2022

When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer... High Unreviewed

CVE-2017-11096 was published May 17, 2022

When SWFTools 0.9.2 processes a crafted file in swfcombine, it can lead to a NULL Pointer... High Unreviewed

CVE-2017-11101 was published May 17, 2022

When SWFTools 0.9.2 processes a crafted file in swfc, it can lead to a NULL Pointer Dereference... High Unreviewed

CVE-2017-11097 was published May 17, 2022

When SWFTools 0.9.2 processes a crafted file in swfextract, it can lead to a NULL Pointer... High Unreviewed

CVE-2017-11100 was published May 17, 2022

Microsoft Windows 10 Gold, 1511, and 1607; Windows 8.1; Windows RT 8.1; Windows Server 2012 R2,... High Unreviewed

CVE-2017-0016 was published May 17, 2022

In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL... High Unreviewed

CVE-2016-7053 was published May 17, 2022

There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0... High Unreviewed

CVE-2017-11590 was published May 17, 2022

An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue... High Unreviewed

CVE-2016-4678 was published May 17, 2022

AppleEFIRuntime in Apple OS X before 10.12 allows attackers to execute arbitrary code in a... High Unreviewed

CVE-2016-4696 was published May 17, 2022

IOAcceleratorFamily in Apple iOS before 10 and OS X before 10.12 allows attackers to execute... High Unreviewed

CVE-2016-4724 was published May 17, 2022

The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed

CVE-2016-7080 was published May 17, 2022

The graphic acceleration functions in VMware Tools 9.x and 10.x before 10.0.9 on OS X allow local... High Unreviewed

CVE-2016-7079 was published May 17, 2022

The bfd_make_section_with_flags function in section.c in the Binary File Descriptor (BFD) library... High Unreviewed

CVE-2017-12457 was published May 17, 2022

NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a NULL... High Unreviewed

CVE-2017-6257 was published May 17, 2022

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler where... High Unreviewed

CVE-2017-6252 was published May 17, 2022

net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too late to check for a NULL fi... High Unreviewed

CVE-2017-13686 was published May 17, 2022

The setup_group function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as... High Unreviewed

CVE-2017-13710 was published May 17, 2022

ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service ... High Unreviewed

CVE-2015-7516 was published May 17, 2022

Calendar in Apple iOS before 9.3.3 allows remote attackers to cause a denial of service (NULL... High Unreviewed

CVE-2016-4605 was published May 17, 2022

NULL Pointer Dereference in the id3v2AddAudioDuration function in libmp3lame/id3tag.c in LAME 3... High Unreviewed

CVE-2017-13712 was published May 17, 2022

In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was... High Unreviewed

CVE-2017-13764 was published May 17, 2022

GoAhead 3.4.0 through 3.6.5 has a NULL Pointer Dereference in the websDecodeUrl function in http... High Unreviewed

CVE-2017-14149 was published May 17, 2022

DeleteBitBuffer in libbitbuf/bitbuffer.c in mp4tools aacplusenc 0.17.5 allows remote attackers to... High Unreviewed

CVE-2017-14181 was published May 17, 2022

Previous 1…24…41 Next

Previous 1 2 … 22 23 24 25 26 … 40 41 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,019 advisories