GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,715
Erlang
34
GitHub Actions
28
Go
2,302
Maven
5,000+
npm
3,946
NuGet
711
pip
3,716
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+
306 advisories
Filter by severity
Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50...
Moderate
Unreviewed
CVE-2017-17131
was published
May 13, 2022
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in...
Moderate
Unreviewed
CVE-2017-18238
was published
May 13, 2022
The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local...
Moderate
Unreviewed
CVE-2017-18208
was published
May 13, 2022
An issue was discovered in QPDF before 7.0.0. There is an infinite loop in the QPDFWriter:...
Moderate
Unreviewed
CVE-2017-18183
was published
May 13, 2022
The arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h in the Linux kernel...
Moderate
Unreviewed
CVE-2017-18261
was published
May 13, 2022
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in...
Moderate
Unreviewed
CVE-2017-18236
was published
May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10...
Moderate
Unreviewed
CVE-2017-2417
was published
May 13, 2022
When dynamic memory allocation fails, currently the process sleeps for one second and continues...
Moderate
Unreviewed
CVE-2017-18277
was published
May 13, 2022
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1...
Moderate
Unreviewed
CVE-2017-9093
was published
May 13, 2022
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows...
Moderate
Unreviewed
CVE-2017-9094
was published
May 13, 2022
An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk...
Moderate
Unreviewed
CVE-2018-12228
was published
May 13, 2022
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in...
Moderate
Unreviewed
CVE-2018-15856
was published
May 13, 2022
An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users to cause a denial...
Moderate
Unreviewed
CVE-2018-10981
was published
May 13, 2022
An issue has been found in dbf2txt through 2012-07-19. It is a infinite loop.
Moderate
Unreviewed
CVE-2018-17042
was published
May 13, 2022
GNU Libextractor before 1.7 contains an infinite loop vulnerability in...
Moderate
Unreviewed
CVE-2018-14347
was published
May 13, 2022
In Bento4 v1.5.1-624, AP4_File::ParseStream in Ap4File.cpp allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2018-14445
was published
May 13, 2022
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0...
Moderate
Unreviewed
CVE-2018-18915
was published
May 13, 2022
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.27-RC3....
Moderate
Unreviewed
CVE-2018-20099
was published
May 13, 2022
libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows...
Moderate
Unreviewed
CVE-2018-20348
was published
May 13, 2022
** DISPUTED ** In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop...
Moderate
Unreviewed
CVE-2018-19826
was published
May 13, 2022
In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage...
Moderate
Unreviewed
CVE-2018-5685
was published
May 13, 2022
Infinite recursion in AcroForm::scanField in AcroForm.cc in xpdf 4.00 allows attackers to launch...
Moderate
Unreviewed
CVE-2018-7453
was published
May 13, 2022
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop in the runzip_fd function of...
Moderate
Unreviewed
CVE-2018-9058
was published
May 13, 2022
VMware ESXi (6.7, 6.5, 6.0), Workstation (15.x and 14.x) and Fusion (11.x and 10.x) contain a...
Moderate
Unreviewed
CVE-2018-6977
was published
May 13, 2022
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote...
Moderate
Unreviewed
CVE-2018-9251
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API