Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,732
Erlang
35
GitHub Actions
29
Go
2,310
Maven
5,000+
npm
3,949
NuGet
711
pip
3,728
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

598 advisories

Loading
mod_ssl in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (CPU... Moderate Unreviewed
CVE-2004-0748 was published Apr 29, 2022
ts-asn1-der has Incorrect DER Encoding of Numbers Leading to Denial of Service and Incorrect Value Representation Moderate
CVE-2025-32029 was published for @apeleghq/asn1-der (npm) Apr 7, 2025
Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1... Moderate Unreviewed
CVE-2022-4345 was published Jan 12, 2023
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential... Moderate Unreviewed
CVE-2024-27032 was published May 1, 2024
smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows... Moderate Unreviewed
CVE-2009-2906 was published May 2, 2022
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a... Moderate Unreviewed
CVE-2011-1002 was published May 17, 2022
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does... Moderate Unreviewed
CVE-2011-2213 was published May 13, 2022
SurrealDB CPU exhaustion via custom functions result in total DoS High
GHSA-pxw4-94j3-v9pf was published for surrealdb (Rust) Apr 11, 2025
cure53
This vulnerability allows any attacker to cause the PeerTube server to stop responding to... High Unreviewed
CVE-2025-32947 was published Apr 15, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix ib block... Moderate Unreviewed
CVE-2023-53026 was published Mar 27, 2025
It was discovered that a programming error in the processing of HTTPS requests in the Apache... High Unreviewed
CVE-2017-6056 was published May 13, 2022
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9.... Moderate Unreviewed
CVE-2017-6299 was published May 13, 2022
The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4... Moderate Unreviewed
CVE-2017-5852 was published May 13, 2022
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator)... Moderate Unreviewed
CVE-2017-5987 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by... High Unreviewed
CVE-2017-6470 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a Netscaler file parser infinite loop,... High Unreviewed
CVE-2017-6467 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser infinite loop,... High Unreviewed
CVE-2017-6474 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop,... High Unreviewed
CVE-2017-6472 was published May 13, 2022
The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent... Moderate Unreviewed
CVE-2017-6314 was published May 13, 2022
The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0... Moderate Unreviewed
CVE-2017-6505 was published May 13, 2022
The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest... Moderate Unreviewed
CVE-2017-5973 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite... High Unreviewed
CVE-2017-7702 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop... High Unreviewed
CVE-2017-7701 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an... High Unreviewed
CVE-2017-7700 was published May 13, 2022
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by... High Unreviewed
CVE-2017-7704 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database