GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,553

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

448 advisories

Filter by severity

Sort by

Least recently updated

An error in the "read_metadata_vorbiscomment_()" function (src/libFLAC/stream_decoder.c) in FLAC... Moderate Unreviewed

CVE-2017-6888 was published May 13, 2022

In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap,... Moderate Unreviewed

CVE-2018-6405 was published May 13, 2022

In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders... Moderate Unreviewed

CVE-2018-16750 was published May 13, 2022

Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an... Moderate Unreviewed

CVE-2018-3658 was published May 13, 2022

Memory leak in the audio/audio.c in QEMU (aka Quick Emulator) allows remote attackers to cause a... High Unreviewed

CVE-2017-8309 was published May 13, 2022

Memory leak in the keyboard input event handlers support in QEMU (aka Quick Emulator) allows... Moderate Unreviewed

CVE-2017-8379 was published May 13, 2022

Quick Emulator (Qemu) built with the USB EHCI Emulation support is vulnerable to a memory leakage... Moderate Unreviewed

CVE-2016-9911 was published May 13, 2022

Quick Emulator (Qemu) built with the USB redirector usb-guest support is vulnerable to a memory... Moderate Unreviewed

CVE-2016-9907 was published May 13, 2022

Memory leak in the usb_xhci_exit function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator), when... Moderate Unreviewed

CVE-2016-7466 was published May 13, 2022

The addForegroundSprite function in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before... Moderate Unreviewed

CVE-2015-6699 was published May 13, 2022

Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader... Moderate Unreviewed

CVE-2015-6697 was published May 13, 2022

The setBackground function in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0... Moderate Unreviewed

CVE-2015-6700 was published May 13, 2022

The createSquareMesh function in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11... Moderate Unreviewed

CVE-2015-6702 was published May 13, 2022

The ambientIlluminationColor property implementation in Adobe Reader and Acrobat 10.x before 10.1... Moderate Unreviewed

CVE-2015-6701 was published May 13, 2022

The animations property implementation in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x... Moderate Unreviewed

CVE-2015-6704 was published May 13, 2022

The loadFlashMovie function in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0... Moderate Unreviewed

CVE-2015-6703 was published May 13, 2022

In MuPDF 1.12.0 and earlier, multiple memory leaks in the PDF parser allow an attacker to cause a... Moderate Unreviewed

CVE-2018-1000036 was published May 13, 2022

Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause... High Unreviewed

CVE-2016-0877 was published May 13, 2022

Memory leak in the gk_circuit_info_do_in_acf function in the H.323 implementation in Cisco IOS... Moderate Unreviewed

CVE-2009-5039 was published May 2, 2022

Multiple memory leaks in the IP module in the kernel in Sun Solaris 8 through 10, and OpenSolaris... Moderate Unreviewed

CVE-2009-3519 was published May 2, 2022

Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x... High Unreviewed

CVE-2009-2903 was published May 2, 2022

Memory leak in the Session Initiation Protocol (SIP) implementation in Cisco IOS 12.2 through 12... High Unreviewed

CVE-2008-3799 was published May 2, 2022

IBM Rational Build Forge 7.0.2 allows remote attackers to cause a denial of service (CPU... Moderate Unreviewed

CVE-2008-2122 was published May 1, 2022

The IAX2 channel driver (chan_iax2) in Asterisk Open 1.2.x before 1.2.23, 1.4.x before 1.4.9, and... High Unreviewed

CVE-2007-4103 was published May 1, 2022

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions,... Moderate Unreviewed

CVE-2007-0897 was published May 1, 2022

Previous 1 2 … 14 15 16 17 18 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

448 advisories