Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,696 advisories

Loading
A Null Pointer Deference issue exists in Academy Software Foundation OpenEXR 2.3.0 in... Moderate Unreviewed
CVE-2020-16588 was published May 24, 2022
An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue... Moderate Unreviewed
CVE-2016-7605 was published May 17, 2022
NULL Pointer Dereference in GitHub repository bfabiszewski/libmobi prior to 0.11. Moderate Unreviewed
CVE-2022-2279 was published Jul 2, 2022
VMware Workstation Pro/Player 12.x before 12.5.3 contains a NULL pointer dereference... Moderate Unreviewed
CVE-2017-4900 was published May 17, 2022
The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers... Moderate Unreviewed
CVE-2016-7905 was published May 17, 2022
In Bento4 1.6.0-638, there is a null pointer reference in the function... Moderate Unreviewed
CVE-2021-40943 was published Jun 29, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote... Moderate Unreviewed
CVE-2016-9430 was published May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote... Moderate Unreviewed
CVE-2016-9434 was published May 17, 2022
The PdfFontFactory.cpp:195:62 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2017-7383 was published May 17, 2022
The PdfFontFactory.cpp:200:88 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2017-7382 was published May 17, 2022
The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2015-8762 was published May 17, 2022
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to... Moderate Unreviewed
CVE-2017-7274 was published May 17, 2022
The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote... Moderate Unreviewed
CVE-2015-9100 was published May 17, 2022
The handle_invept function in arch/x86/kvm/vmx.c in the Linux kernel 3.12 through 3.15 allows... Moderate Unreviewed
CVE-2017-8106 was published May 17, 2022
The util_format_is_pure_uint function in vrend_renderer.c in Virgil 3d project (aka virglrenderer... Moderate Unreviewed
CVE-2017-5937 was published May 17, 2022
The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers... Moderate Unreviewed
CVE-2017-6845 was published May 17, 2022
The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in... Moderate Unreviewed
CVE-2017-6846 was published May 17, 2022
The crypto_skcipher_init_tfm function in crypto/skcipher.c in the Linux kernel through 4.11.2... Moderate Unreviewed
CVE-2017-9211 was published May 17, 2022
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote... Moderate Unreviewed
CVE-2016-9443 was published May 17, 2022
base/PdfOutputStream.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2017-5854 was published May 17, 2022
The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allow remote attackers to... Moderate Unreviewed
CVE-2017-6197 was published May 17, 2022
The doc/PdfPage.cpp:614:20 code in PoDoFo 0.9.5 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2017-7380 was published May 17, 2022
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a... Moderate Unreviewed
CVE-2014-9812 was published May 17, 2022
In OxygenOS before 4.0.3 on OnePlus 3 and 3T devices, an unauthorized attacker can cause a locked... Moderate Unreviewed
CVE-2017-5625 was published May 17, 2022
The free_options function in options_manager.c in mp3splt 2.6.2 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-5851 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database