GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
668
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
450 advisories
Filter by severity
A remote code execution vulnerability in the Android media framework (mpeg2 decoder). Product:...
High
Unreviewed
CVE-2017-0719
was published
May 13, 2022
In SWFTools, a memory leak was found in wav2swf.
Moderate
Unreviewed
CVE-2017-1000182
was published
May 13, 2022
In MPEG4Extractor.cpp, there are several places where functions return early without cleaning up...
High
Unreviewed
CVE-2017-0855
was published
May 13, 2022
A denial of service vulnerability in the Android media framework (libstagefright). Product:...
High
Unreviewed
CVE-2017-0813
was published
May 13, 2022
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 4.4...
Moderate
Unreviewed
CVE-2017-0697
was published
May 13, 2022
A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could...
High
Unreviewed
CVE-2017-12245
was published
May 13, 2022
A flaw was found in dovecot 2.0 up to 2.2.33 and 2.3.0. An abort of SASL authentication results...
High
Unreviewed
CVE-2017-15132
was published
May 13, 2022
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Wireless LAN...
Moderate
Unreviewed
CVE-2017-12278
was published
May 13, 2022
A vulnerability in the Internet Group Management Protocol (IGMP) packet-processing functionality...
High
Unreviewed
CVE-2018-0165
was published
May 13, 2022
A vulnerability in TCP connection management in Cisco Prime Access Registrar could allow an...
High
Unreviewed
CVE-2018-0421
was published
May 13, 2022
An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and...
Moderate
Unreviewed
CVE-2017-15094
was published
May 13, 2022
PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor...
High
Unreviewed
CVE-2018-10851
was published
May 13, 2022
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2...
High
Unreviewed
CVE-2018-20657
was published
May 13, 2022
Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net...
Moderate
Unreviewed
CVE-2018-6554
was published
May 13, 2022
An extension to hooks capabilities which debuted in Kea 1.4.0 introduced a memory leak for...
High
Unreviewed
CVE-2018-5739
was published
May 13, 2022
sav_parse_machine_integer_info_record in spss/readstat_sav_read.c in libreadstat.a in ReadStat 0...
High
Unreviewed
CVE-2018-11364
was published
May 13, 2022
Memory leak in drivers/media/video/videobuf-core.c in the videobuf subsystem in the Linux kernel...
Moderate
Unreviewed
CVE-2010-5321
was published
May 13, 2022
pvrdma_realize in hw/rdma/vmw/pvrdma_main.c in QEMU has a Memory leak after an initialisation error.
Moderate
Unreviewed
CVE-2018-20123
was published
May 13, 2022
hw/rdma/vmw/pvrdma_cmd.c in QEMU allows create_cq and create_qp memory leaks because errors are...
Moderate
Unreviewed
CVE-2018-20126
was published
May 13, 2022
Memory leak in the vcard_apdu_new function in card_7816.c in libcacard before 2.5.3 allows local...
Moderate
Unreviewed
CVE-2017-6414
was published
May 13, 2022
Squid before 4.4, when SNMP is enabled, allows a denial of service (Memory Leak) via an SNMP packet.
Moderate
Unreviewed
CVE-2018-19132
was published
May 13, 2022
There is memory leak at liblas::Open (liblas/liblas.hpp) in libLAS 1.8.1.
Moderate
Unreviewed
CVE-2018-20540
was published
May 13, 2022
In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This...
High
Unreviewed
CVE-2018-18226
was published
May 13, 2022
Memory leak in Cisco IOS before 15.0(1)XA5 might allow remote attackers to cause a denial of...
High
Unreviewed
CVE-2010-4683
was published
May 13, 2022
Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4...
High
Unreviewed
CVE-2015-7701
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API