GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,017

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

184 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify... Moderate Unreviewed

CVE-2017-18252 was published May 13, 2022

There is a reachable assertion abort in the function write_long_string_missing_values() in data... Moderate Unreviewed

CVE-2019-9211 was published May 13, 2022

An issue was discovered in Bento4 v1.5.1-627. There is an assertion failure in AP4_AtomListWriter... Moderate Unreviewed

CVE-2019-7697 was published May 13, 2022

An issue was discovered in JasPer 2.0.14. There is an access violation in the function... Moderate Unreviewed

CVE-2018-19539 was published May 13, 2022

In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the... Moderate Unreviewed

CVE-2017-13658 was published May 13, 2022

JasPer 2.0.14 allows denial of service via a reachable assertion in the function... Moderate Unreviewed

CVE-2018-9252 was published May 13, 2022

When a specific BGP flowspec configuration is enabled and upon receipt of a specific matching BGP... Moderate Unreviewed

CVE-2019-0003 was published May 13, 2022

A query with a specific set of characteristics could cause a server using DNS64 to encounter an... Moderate Unreviewed

CVE-2017-3136 was published May 13, 2022

QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is... Moderate Unreviewed

CVE-2015-8745 was published May 13, 2022

An issue was discovered in cairo 1.16.0. There is an assertion problem in the function... Moderate Unreviewed

CVE-2019-6461 was published May 13, 2022

There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound... Moderate Unreviewed

CVE-2017-15371 was published May 13, 2022

An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting... Moderate Unreviewed

CVE-2018-17204 was published May 13, 2022

A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17.... Moderate Unreviewed

CVE-2018-20217 was published May 13, 2022

There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel... Moderate Unreviewed

CVE-2022-29977 was published May 12, 2022

KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG... Moderate Unreviewed

CVE-2006-6811 was published May 1, 2022

OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via... Moderate Unreviewed

CVE-2006-5779 was published May 1, 2022

BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of... Moderate Unreviewed

CVE-2006-4095 was published May 1, 2022

quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal Moderate Unreviewed

CVE-2012-5521 was published Apr 23, 2022

An authenticated user may trigger an invariant assertion during command dispatch due to incorrect... Moderate Unreviewed

CVE-2022-24272 was published Apr 22, 2022

stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a... Moderate Unreviewed

CVE-2022-27938 was published Mar 27, 2022

tcprewrite in Tcpreplay 4.4.1 has a reachable assertion in get_layer4_v6 in common/get.c. Moderate Unreviewed

CVE-2022-27939 was published Mar 27, 2022

tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in... Moderate Unreviewed

CVE-2022-25484 was published Mar 23, 2022

Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via... Moderate Unreviewed

CVE-2022-0865 was published Mar 11, 2022

There is an Assertion `num <= INT_BIT' failed at BitStreamReader::skipBits in /bitStream.h:132 of... Moderate Unreviewed

CVE-2021-45861 was published Mar 3, 2022

There is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed... Moderate Unreviewed

CVE-2022-22901 was published Feb 18, 2022

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

184 advisories