Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

220 advisories

Loading
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec... Moderate Unreviewed
CVE-2019-10023 was published May 14, 2022
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows... Moderate Unreviewed
CVE-2017-7962 was published May 13, 2022
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-9201 was published May 13, 2022
imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-9202 was published May 13, 2022
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in... Moderate Unreviewed
CVE-2017-5844 was published May 13, 2022
The gst_riff_create_audio_caps function in gst-libs/gst/riff/riff-media.c in gst-plugins-base in... Moderate Unreviewed
CVE-2017-5837 was published May 13, 2022
A denial of service vulnerability in libstagefright in Mediaserver could enable an attacker to... Moderate Unreviewed
CVE-2017-0603 was published May 13, 2022
In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c.... Moderate Unreviewed
CVE-2018-9018 was published May 13, 2022
** DISPUTED ** The Wave_read._read_fmt_chunk function in Lib/wave.py in Python through 3.6.4 does... Moderate Unreviewed
CVE-2017-18207 was published May 13, 2022
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect,... Moderate Unreviewed
CVE-2017-9239 was published May 13, 2022
The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote... Moderate Unreviewed
CVE-2017-8842 was published May 13, 2022
Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in... Moderate Unreviewed
CVE-2018-10016 was published May 13, 2022
libjpeg-turbo 1.5.90 is vulnerable to a denial of service vulnerability caused by a divide by... Moderate Unreviewed
CVE-2018-1152 was published May 13, 2022
The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux kernel before 2.6.38-rc6-git6... Moderate Unreviewed
CVE-2011-1012 was published May 13, 2022
The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not... Moderate Unreviewed
CVE-2010-4165 was published May 13, 2022
ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to... Moderate Unreviewed
CVE-2017-14249 was published May 13, 2022
In libpng 1.6.34, a wrong calculation of row_factor in the png_check_chunk_length function ... Moderate Unreviewed
CVE-2018-13785 was published May 13, 2022
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2015-8504 was published May 13, 2022
Divide-by-zero vulnerability in the opj_tcd_init_tile function in tcd.c in OpenJPEG before 2.1.1... Moderate Unreviewed
CVE-2016-4797 was published May 13, 2022
Division-by-zero vulnerabilities in the functions opj_pi_next_cprl, opj_pi_next_pcrl, and... Moderate Unreviewed
CVE-2016-10506 was published May 13, 2022
An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash... Moderate Unreviewed
CVE-2018-19872 was published May 13, 2022
The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS... Moderate Unreviewed
CVE-2016-8667 was published May 13, 2022
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c... Moderate Unreviewed
CVE-2017-14634 was published May 13, 2022
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec... Moderate Unreviewed
CVE-2019-10018 was published May 13, 2022
The Virtio Vring implementation in QEMU allows local OS guest users to cause a denial of service ... Moderate Unreviewed
CVE-2017-17381 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database