Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,732
Erlang
35
GitHub Actions
29
Go
2,310
Maven
5,000+
npm
3,949
NuGet
711
pip
3,728
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+

281 advisories

Loading
There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec.c of Jasper 2.0.13. It... High Unreviewed
CVE-2017-14229 was published May 13, 2022
In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the... High Unreviewed
CVE-2017-15602 was published May 13, 2022
In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup() in Object.h after a... High Unreviewed
CVE-2017-14929 was published May 13, 2022
In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after... High Unreviewed
CVE-2017-14519 was published May 13, 2022
In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an... High Unreviewed
CVE-2017-6014 was published May 13, 2022
The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote... High Unreviewed
CVE-2017-6214 was published May 13, 2022
Incorrect interaction of the parse_packet() and parse_part_sign_sha256() functions in network.c... High Unreviewed
CVE-2017-7401 was published May 13, 2022
In ImageMagick 7.0.4-9, an infinite loop can occur because of a floating-point rounding error in... High Unreviewed
CVE-2017-7619 was published May 13, 2022
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted... High Unreviewed
CVE-2018-10938 was published May 13, 2022
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x... High Unreviewed
CVE-2018-10546 was published May 13, 2022
The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9222 was published May 13, 2022
A memory exhaustion vulnerability exists in Asterisk Open Source 13.x before 13.15.1 and 14.x... High Unreviewed
CVE-2017-9358 was published May 13, 2022
ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif. High Unreviewed
CVE-2018-11657 was published May 13, 2022
The function wav_read in libwav.c in libwav through 2017-04-20 has an infinite loop. High Unreviewed
CVE-2018-14051 was published May 13, 2022
In Miniz 2.0.7, tinfl_decompress in miniz_tinfl.c has an infinite loop because sym2 and counter... High Unreviewed
CVE-2018-12913 was published May 13, 2022
An issue was discovered in NuttX before 7.27. The function netlib_parsehttpurl() in apps/netutils... High Unreviewed
CVE-2018-20578 was published May 13, 2022
An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer,... High Unreviewed
CVE-2018-20103 was published May 13, 2022
FFmpeg before commit 9807d3976be0e92e4ece3b4b1701be894cd7c2e1 contains a CWE-835: Infinite loop... High Unreviewed
CVE-2018-1999012 was published May 13, 2022
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p9, 10.4-STABLE, 10.4-RELEASE-p8 and 10.3-RELEASE-p28... High Unreviewed
CVE-2018-6918 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an... High Unreviewed
CVE-2018-7325 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite... High Unreviewed
CVE-2018-7333 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite... High Unreviewed
CVE-2018-7330 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite... High Unreviewed
CVE-2018-7328 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-lltd.c had an infinite... High Unreviewed
CVE-2018-7326 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-openflow_v6.c had an... High Unreviewed
CVE-2018-7327 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database