Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

185 advisories

Loading
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0 High Unreviewed
CVE-2022-0667 was published Mar 23, 2022
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific... High Unreviewed
CVE-2022-0635 was published Mar 24, 2022
Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in... High Unreviewed
CVE-2021-30328 was published Apr 2, 2022
Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-30332 was published Apr 2, 2022
Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-30329 was published Apr 2, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27382 was published Apr 13, 2022
There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos ==... High Unreviewed
CVE-2022-27448 was published Apr 15, 2022
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of... High Unreviewed
CVE-2022-20694 was published Apr 16, 2022
On vulnerable configurations, the named daemon may, in some circumstances, terminate with an... High Unreviewed
CVE-2022-1183 was published May 20, 2022
An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An... High Unreviewed
CVE-2019-15892 was published May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info... High Unreviewed
CVE-2020-11273 was published May 24, 2022
Possible assertion due to improper validation of rank restriction field in Snapdragon Auto,... High Unreviewed
CVE-2021-35073 was published Jun 15, 2022
Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in... High Unreviewed
CVE-2021-30340 was published Jun 15, 2022
There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int,... High Unreviewed
CVE-2022-33024 was published Jun 24, 2022
The flv_write_packet function in libavformat/flvenc.c in FFmpeg through 2.8 does not check for an... High Unreviewed
CVE-2018-15822 was published May 13, 2022
The assertion `stmt->Dbc->FirstStmt' failed in MonetDB Database Server v11.43.13. High Unreviewed
CVE-2022-34967 was published Aug 4, 2022
Denial of service in MODEM due to reachable assertion in Snapdragon Mobile High Unreviewed
CVE-2022-25671 was published Nov 15, 2022
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user... High Unreviewed
CVE-2020-36382 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets... High Unreviewed
CVE-2020-27638 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the... High Unreviewed
CVE-2020-36222 was published May 24, 2022
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted... High Unreviewed
CVE-2021-20272 was published May 24, 2022
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data... High Unreviewed
CVE-2020-11218 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a... High Unreviewed
CVE-2021-20217 was published May 24, 2022
Possible denial of service while handling host WMI command due to improper validation in... High Unreviewed
CVE-2020-11278 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database