GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,129
Composer 4,331
Erlang 31
GitHub Actions 21
Go 2,093
Maven 5,262
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,199

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

63 advisories

Filter by severity

Sort by

Least recently updated

A floating-point exception was discovered in PackLinuxElf::elf_hash in p_lx_elf.cpp in UPX 3.95.... Moderate Unreviewed

CVE-2019-20051 was published May 24, 2022

library/glob.html in the Python 2 and 3 documentation before 2016 has potentially misleading... High Unreviewed

CVE-2019-17514 was published May 24, 2022

In FreeBSD 12.0-STABLE before r350222, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before... High Unreviewed

CVE-2019-5607 was published May 24, 2022

All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode... High Unreviewed

CVE-2017-0342 was published May 17, 2022

Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that... Moderate Unreviewed

CVE-2016-9377 was published May 17, 2022

espritblock eos4j, an unofficial SDK for EOS, through 2018-07-12 mishandles floating-point... High Unreviewed

CVE-2018-14439 was published May 14, 2022

In all Qualcomm products with Android releases from CAF using the Linux kernel, during DMA... High Unreviewed

CVE-2017-9725 was published May 13, 2022

A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in... Moderate Unreviewed

CVE-2017-8932 was published May 13, 2022

Xen through 4.6.x on 64-bit platforms mishandles a failsafe callback, which might allow PV guest... High Unreviewed

CVE-2017-8905 was published May 13, 2022

libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type... High Unreviewed

CVE-2017-8326 was published May 13, 2022

A flaw in DRBG number generation within the Network Security Services (NSS) library where the... Moderate Unreviewed

CVE-2017-5462 was published May 13, 2022

In writeToParcel and readFromParcel of PeriodicAdvertisingReport.java, there is a permission... High Unreviewed

CVE-2017-13288 was published May 13, 2022

A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android... High Unreviewed

CVE-2017-13151 was published May 13, 2022

The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS... High Unreviewed

CVE-2017-12134 was published May 13, 2022

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Floating Point... Moderate Unreviewed

CVE-2017-11537 was published May 13, 2022

A vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1... High Unreviewed

CVE-2017-0819 was published May 13, 2022

A remote code execution vulnerability in the Android media framework. Product: Android. Versions:... High Unreviewed

CVE-2017-0679 was published May 13, 2022

A elevation of privilege vulnerability in the Android framework. Product: Android. Versions: 4.4... High Unreviewed

CVE-2017-0666 was published May 13, 2022

An elevation of privilege vulnerability in Audioserver could enable a local malicious application... High Unreviewed

CVE-2017-0545 was published May 13, 2022

A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr... Moderate Unreviewed

CVE-2017-2618 was published May 13, 2022

A vulnerability in certain IPv4 fragment-processing functions of Cisco Remote PHY Software could... High Unreviewed

CVE-2018-15391 was published May 13, 2022

When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line... High Unreviewed

CVE-2018-11790 was published May 13, 2022

Off-by-one error in the OpenType Sanitizer in Google Chrome before 18.0.1025.142 allows remote... Moderate Unreviewed

CVE-2011-3062 was published May 13, 2022

Xen allows local OS guest users to cause a denial of service (crash) or possibly obtain sensitive... High Unreviewed

CVE-2017-12135 was published May 13, 2022

net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are... Moderate Unreviewed

CVE-2011-1573 was published May 13, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

63 advisories