Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,757
Erlang
35
GitHub Actions
29
Go
2,328
Maven
5,000+
npm
3,965
NuGet
712
pip
3,745
Pub
12
RubyGems
921
Rust
974
Swift
38
Unreviewed advisories
All unreviewed
5,000+

345 advisories

Loading
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-7499 was published May 17, 2022
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-9265 was published May 17, 2022
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1... Moderate Unreviewed
CVE-2017-7448 was published May 17, 2022
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2016-7530 was published May 17, 2022
RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error... Moderate Unreviewed
CVE-2017-9302 was published May 17, 2022
The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to... Moderate Unreviewed
CVE-2017-11546 was published May 17, 2022
There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file. Critical Unreviewed
CVE-2017-11720 was published May 17, 2022
CDirVector::GetTable in dirfunc.hxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-12924 was published May 17, 2022
epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13... Moderate Unreviewed
CVE-2016-6505 was published May 17, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for... Moderate Unreviewed
CVE-2017-6270 was published May 17, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for... Moderate Unreviewed
CVE-2017-6271 was published May 17, 2022
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-15025 was published May 17, 2022
QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero... Moderate Unreviewed
CVE-2014-0142 was published May 17, 2022
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote... Moderate Unreviewed
CVE-2016-10219 was published May 17, 2022
The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows... Moderate Unreviewed
CVE-2016-3622 was published May 17, 2022
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed
CVE-2017-6833 was published May 17, 2022
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed
CVE-2017-6835 was published May 17, 2022
Aubio Divide-By-Zero DoS vulnerability in new_aubio_source_wavread function High
CVE-2017-17054 was published for aubio (pip) May 17, 2022
In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c... Moderate Unreviewed
CVE-2017-17508 was published May 17, 2022
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed
CVE-2016-8692 was published May 14, 2022
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed
CVE-2016-8691 was published May 14, 2022
The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before... High Unreviewed
CVE-2015-3418 was published May 14, 2022
In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTOR_wav_extract_method in... Moderate Unreviewed
CVE-2017-15266 was published May 14, 2022
ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode... High Unreviewed
CVE-2017-1000414 was published May 14, 2022
Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate... Moderate Unreviewed
CVE-2018-2385 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database