Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

610 advisories

Loading
In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after... High Unreviewed
CVE-2017-14519 was published May 13, 2022
Timergrp module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10;... Moderate Unreviewed
CVE-2017-17150 was published May 13, 2022
An issue was discovered in QPDF before 7.0.0. There is an infinite loop due to looping xref... Moderate Unreviewed
CVE-2017-18186 was published May 13, 2022
Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50... Moderate Unreviewed
CVE-2017-17131 was published May 13, 2022
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in... Moderate Unreviewed
CVE-2017-18238 was published May 13, 2022
The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local... Moderate Unreviewed
CVE-2017-18208 was published May 13, 2022
An issue was discovered in QPDF before 7.0.0. There is an infinite loop in the QPDFWriter:... Moderate Unreviewed
CVE-2017-18183 was published May 13, 2022
The arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h in the Linux kernel... Moderate Unreviewed
CVE-2017-18261 was published May 13, 2022
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in... Moderate Unreviewed
CVE-2017-18236 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-2417 was published May 13, 2022
When dynamic memory allocation fails, currently the process sleeps for one second and continues... Moderate Unreviewed
CVE-2017-18277 was published May 13, 2022
In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an... High Unreviewed
CVE-2017-6014 was published May 13, 2022
The tcp_splice_read function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote... High Unreviewed
CVE-2017-6214 was published May 13, 2022
Incorrect interaction of the parse_packet() and parse_part_sign_sha256() functions in network.c... High Unreviewed
CVE-2017-7401 was published May 13, 2022
In ImageMagick 7.0.4-9, an infinite loop can occur because of a floating-point rounding error in... High Unreviewed
CVE-2017-7619 was published May 13, 2022
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1... Moderate Unreviewed
CVE-2017-9093 was published May 13, 2022
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows... Moderate Unreviewed
CVE-2017-9094 was published May 13, 2022
A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted... High Unreviewed
CVE-2018-10938 was published May 13, 2022
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x... High Unreviewed
CVE-2018-10546 was published May 13, 2022
The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9222 was published May 13, 2022
A memory exhaustion vulnerability exists in Asterisk Open Source 13.x before 13.15.1 and 14.x... High Unreviewed
CVE-2017-9358 was published May 13, 2022
ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif. High Unreviewed
CVE-2018-11657 was published May 13, 2022
An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk... Moderate Unreviewed
CVE-2018-12228 was published May 13, 2022
The function wav_read in libwav.c in libwav through 2017-04-20 has an infinite loop. High Unreviewed
CVE-2018-14051 was published May 13, 2022
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in... Moderate Unreviewed
CVE-2018-15856 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database