GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,110

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

568 advisories

Filter by severity

Sort by

Least recently updated

An FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop and memory exhaustion... High Unreviewed

CVE-2017-10985 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11625 was published May 13, 2022

The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0... High Unreviewed

CVE-2017-11478 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11626 was published May 13, 2022

The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop... High Unreviewed

CVE-2017-11446 was published May 13, 2022

An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcp_attr2vp()... High Unreviewed

CVE-2017-10986 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11624 was published May 13, 2022

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed

CVE-2017-11627 was published May 13, 2022

The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1... High Unreviewed

CVE-2017-11523 was published May 13, 2022

The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain... High Unreviewed

CVE-2017-12995 was published May 13, 2022

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c... High Unreviewed

CVE-2017-12997 was published May 13, 2022

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite... High Unreviewed

CVE-2017-11406 was published May 13, 2022

Bad reference counting in the context of accept_ice_connection() in gsm-xsmp-server.c in old... Moderate Unreviewed

CVE-2017-11171 was published May 13, 2022

There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed

CVE-2017-11338 was published May 13, 2022

In ihevcd_decode.c there is a possible infinite loop due to bytes for an sps of unsupported... High Unreviewed

CVE-2017-13193 was published May 13, 2022

ccn-lite-ccnb2xml in CCN-lite before 2.0.0 allows context-dependent attackers to have unspecified... High Unreviewed

CVE-2017-12412 was published May 13, 2022

In the ihevcd_parse_sps function of ihevcd_parse_headers.c, several parameter values could be... High Unreviewed

CVE-2017-13195 was published May 13, 2022

The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print... High Unreviewed

CVE-2017-12990 was published May 13, 2022

The RESP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-resp.c... High Unreviewed

CVE-2017-12989 was published May 13, 2022

find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed

CVE-2017-15024 was published May 13, 2022

In the ihevcd_decode function of ihevcd_decode.c, there is an infinite loop due to an incomplete... High Unreviewed

CVE-2017-13191 was published May 13, 2022

In the ihevcd_parse_slice_header function of ihevcd_parse_slice_header.c a slice address of zero... High Unreviewed

CVE-2017-13192 was published May 13, 2022

In GNU Libextractor 1.4, there is an integer signedness error for the chunk size in the... High Unreviewed

CVE-2017-15602 was published May 13, 2022

The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer... High Unreviewed

CVE-2017-14339 was published May 13, 2022

There is an infinite loop in the jpc_dec_tileinit function in jpc/jpc_dec.c of Jasper 2.0.13. It... High Unreviewed

CVE-2017-14229 was published May 13, 2022

Previous 1 2 … 7 8 9 10 11 … 22 23 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

568 advisories