GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,630
Composer 4,715
Erlang 34
GitHub Actions 28
Go 2,302
Maven 5,577
npm 3,946
NuGet 711
pip 3,716
Pub 12
RubyGems 920
Rust 964
Swift 38

Unreviewed advisories

All unreviewed 257,155

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

306 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50... Moderate Unreviewed

CVE-2017-17131 was published May 13, 2022

An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in... Moderate Unreviewed

CVE-2017-18238 was published May 13, 2022

The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local... Moderate Unreviewed

CVE-2017-18208 was published May 13, 2022

An issue was discovered in QPDF before 7.0.0. There is an infinite loop in the QPDFWriter:... Moderate Unreviewed

CVE-2017-18183 was published May 13, 2022

The arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h in the Linux kernel... Moderate Unreviewed

CVE-2017-18261 was published May 13, 2022

An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in... Moderate Unreviewed

CVE-2017-18236 was published May 13, 2022

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10... Moderate Unreviewed

CVE-2017-2417 was published May 13, 2022

When dynamic memory allocation fails, currently the process sleeps for one second and continues... Moderate Unreviewed

CVE-2017-18277 was published May 13, 2022

The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1... Moderate Unreviewed

CVE-2017-9093 was published May 13, 2022

The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows... Moderate Unreviewed

CVE-2017-9094 was published May 13, 2022

An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk... Moderate Unreviewed

CVE-2018-12228 was published May 13, 2022

An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in... Moderate Unreviewed

CVE-2018-15856 was published May 13, 2022

An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial... Moderate Unreviewed

CVE-2018-10981 was published May 13, 2022

An issue has been found in dbf2txt through 2012-07-19. It is a infinite loop. Moderate Unreviewed

CVE-2018-17042 was published May 13, 2022

GNU Libextractor before 1.7 contains an infinite loop vulnerability in... Moderate Unreviewed

CVE-2018-14347 was published May 13, 2022

In Bento4 v1.5.1-624, AP4_File::ParseStream in Ap4File.cpp allows remote attackers to cause a... Moderate Unreviewed

CVE-2018-14445 was published May 13, 2022

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed

CVE-2018-18915 was published May 13, 2022

There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3.... Moderate Unreviewed

CVE-2018-20099 was published May 13, 2022

libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows... Moderate Unreviewed

CVE-2018-20348 was published May 13, 2022

** DISPUTED ** In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop... Moderate Unreviewed

CVE-2018-19826 was published May 13, 2022

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage... Moderate Unreviewed

CVE-2018-5685 was published May 13, 2022

Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch... Moderate Unreviewed

CVE-2018-7453 was published May 13, 2022

In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of... Moderate Unreviewed

CVE-2018-9058 was published May 13, 2022

VMware ESXi (6.7, 6.5, 6.0), Workstation (15.x and 14.x) and Fusion (11.x and 10.x) contain a... Moderate Unreviewed

CVE-2018-6977 was published May 13, 2022

The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote... Moderate Unreviewed

CVE-2018-9251 was published May 13, 2022

Previous 1 2 3 4 5 6 7 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

306 advisories