Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

919 advisories

Loading
An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found... Moderate Unreviewed
CVE-2017-18219 was published May 13, 2022
In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function... High Unreviewed
CVE-2017-18028 was published May 13, 2022
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed
CVE-2017-14938 was published May 13, 2022
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c. High Unreviewed
CVE-2017-14531 was published May 13, 2022
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29... High Unreviewed
CVE-2017-13716 was published May 13, 2022
A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory... High Unreviewed
CVE-2017-13190 was published May 13, 2022
A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory... High Unreviewed
CVE-2017-13189 was published May 13, 2022
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation... High Unreviewed
CVE-2017-12944 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage... High Unreviewed
CVE-2017-12432 was published May 13, 2022
IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash... High Unreviewed
CVE-2017-1227 was published May 13, 2022
The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS... Moderate Unreviewed
CVE-2017-12132 was published May 13, 2022
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which... Moderate Unreviewed
CVE-2017-12144 was published May 13, 2022
The ReadCINImage function in coders/cin.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11525 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libskia). Product: Android.... High Unreviewed
CVE-2017-0771 was published May 13, 2022
An elevation of privilege vulnerability in the Qualcomm Secure Execution Environment Communicator... High Unreviewed
CVE-2017-0612 was published May 13, 2022
A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG... Moderate Unreviewed
CVE-2017-2587 was published May 13, 2022
A vulnerability in the TCP connection handling functionality of Cisco Remote Expert Manager... High Unreviewed
CVE-2017-6641 was published May 13, 2022
A vulnerability in the Play Framework of Cisco Elastic Services Controller (ESC) could allow an... Critical Unreviewed
CVE-2017-6713 was published May 13, 2022
A vulnerability in the TCP throttling process for Cisco IoT Field Network Director (IoT-FND)... High Unreviewed
CVE-2017-6780 was published May 13, 2022
A high rate of VLAN authentication attempts sent from an adjacent host on the local broadcast... Moderate Unreviewed
CVE-2018-0006 was published May 13, 2022
A vulnerability in the TCP throttling process of Cisco Prime Network could allow an... High Unreviewed
CVE-2018-0137 was published May 13, 2022
It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without... High Unreviewed
CVE-2018-10908 was published May 13, 2022
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Supervisor... Moderate Unreviewed
CVE-2018-15404 was published May 13, 2022
A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC),... High Unreviewed
CVE-2018-15458 was published May 13, 2022
IBM QRadar Incident Forensics 7.2 and 7.3 does not properly restrict the size or amount of... High Unreviewed
CVE-2018-1647 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database