Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

351 advisories

Loading
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen... High Unreviewed
CVE-2024-23385 was published Nov 4, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via... High Unreviewed
CVE-2024-10455 was published Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application... Moderate Unreviewed
CVE-2024-50614 was published Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to... Moderate Unreviewed
CVE-2024-50615 was published Oct 28, 2024
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in... Moderate Unreviewed
CVE-2024-50613 was published Oct 28, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to... High Unreviewed
CVE-2024-20094 was published Oct 7, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net... Moderate Unreviewed
CVE-2024-8354 was published Sep 19, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: page_ref: remove... Moderate Unreviewed
CVE-2024-42251 was published Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved: closures: Change BUG_ON() to... Moderate Unreviewed
CVE-2024-42252 was published Aug 8, 2024
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR... Moderate Unreviewed
CVE-2024-23350 was published Aug 5, 2024
Client queries that trigger serving stale data and that also require lookups in local... High Unreviewed
CVE-2024-4076 was published Jul 23, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc... Moderate Unreviewed
CVE-2024-3374 was published May 14, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache... High Unreviewed
CVE-2024-33601 was published May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment... High Unreviewed
CVE-2023-43529 was published May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS... High Unreviewed
CVE-2024-34475 was published May 5, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via... Moderate Unreviewed
CVE-2024-33255 was published Apr 26, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an... High Unreviewed
CVE-2024-31744 was published Apr 19, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function... Moderate Unreviewed
CVE-2024-3567 was published Apr 10, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. High Unreviewed
CVE-2023-33096 was published Mar 4, 2024
Transient DOS while processing multiple payload container type with incorrect container length... High Unreviewed
CVE-2023-33095 was published Mar 4, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure... High Unreviewed
CVE-2023-5517 was published Feb 13, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to... High Unreviewed
CVE-2024-25445 was published Feb 9, 2024
Transient DOS while processing 11AZ RTT management action frame received through OTA. High Unreviewed
CVE-2023-43523 was published Feb 6, 2024
In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an... Moderate Unreviewed
CVE-2024-23850 was published Jan 23, 2024
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a... High Unreviewed
CVE-2023-34194 was published Dec 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database