Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

220 advisories

Loading
The Virtio Vring implementation in QEMU allows local OS guest users to cause a denial of service ... Moderate Unreviewed
CVE-2017-17381 was published May 13, 2022
In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function... Moderate Unreviewed
CVE-2017-16942 was published May 14, 2022
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-15025 was published May 17, 2022
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c... Moderate Unreviewed
CVE-2017-14634 was published May 13, 2022
ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to... Moderate Unreviewed
CVE-2017-14249 was published May 13, 2022
The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel before 4.12 allows local users... Moderate Unreviewed
CVE-2017-14106 was published May 14, 2022
CDirVector::GetTable in dirfunc.hxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2017-12924 was published May 17, 2022
The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-11359 was published May 14, 2022
The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-11332 was published May 14, 2022
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-9201 was published May 13, 2022
imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-9202 was published May 13, 2022
A denial of service vulnerability in libstagefright in Mediaserver could enable an attacker to... Moderate Unreviewed
CVE-2017-0603 was published May 13, 2022
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and... Moderate Unreviewed
CVE-2016-9960 was published May 14, 2022
The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote... Moderate Unreviewed
CVE-2017-8842 was published May 13, 2022
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows... Moderate Unreviewed
CVE-2017-7962 was published May 13, 2022
The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-7595 was published May 14, 2022
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed
CVE-2017-6833 was published May 17, 2022
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed
CVE-2017-6835 was published May 17, 2022
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and... Moderate Unreviewed
CVE-2016-10267 was published May 14, 2022
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero error and... Moderate Unreviewed
CVE-2016-10266 was published May 14, 2022
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed
CVE-2016-8692 was published May 14, 2022
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-7499 was published May 17, 2022
Divide-by-zero vulnerability in the opj_tcd_init_tile function in tcd.c in OpenJPEG before 2.1.1... Moderate Unreviewed
CVE-2016-4797 was published May 13, 2022
The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2016-8697 was published May 17, 2022
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed
CVE-2016-8691 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database