Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

448 advisories

Loading
An issue was discovered in Samsung TizenRT through 3.0_GBM (and 3.1_PRE). createDB in security... High Unreviewed
CVE-2022-40280 was published Sep 9, 2022
tifig v0.2.2 was discovered to contain a memory leak via operator new[](unsigned long) at /asan... Moderate Unreviewed
CVE-2022-36152 was published Aug 17, 2022
SWFTools commit 772e55a2 was discovered to contain a memory leak via /lib/mem.c. Moderate Unreviewed
CVE-2022-35110 was published Aug 17, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33437 was published Jul 27, 2022
QPDF v8.4.2 was discovered to contain a heap buffer overflow via the function QPDF:... Moderate Unreviewed
CVE-2022-34503 was published Jul 23, 2022
A Missing Release of File Descriptor or Handle after Effective Lifetime vulnerability in plugable... Moderate Unreviewed
CVE-2022-22215 was published Jul 21, 2022
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions <... High Unreviewed
CVE-2022-29884 was published Jul 13, 2022
An issue was discovered in swftools through 20201222 through a memory leak in the swftools when... High Unreviewed
CVE-2021-42197 was published Jun 3, 2022
A stack buffer overflow exists in Mini-XML v3.2. When inputting an unformed XML string to the... High Unreviewed
CVE-2021-42860 was published May 27, 2022
A memory leak issue was discovered in Mini-XML v3.2 that could cause a denial of service. High Unreviewed
CVE-2021-42859 was published May 27, 2022
A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of... Critical Unreviewed
CVE-2021-21811 was published May 24, 2022
ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in... Moderate Unreviewed
CVE-2019-16713 was published May 24, 2022
ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated... Moderate Unreviewed
CVE-2019-16712 was published May 24, 2022
ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. Moderate Unreviewed
CVE-2019-16709 was published May 24, 2022
ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage. Moderate Unreviewed
CVE-2019-16708 was published May 24, 2022
ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in... Moderate Unreviewed
CVE-2019-16710 was published May 24, 2022
ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c. Moderate Unreviewed
CVE-2019-16711 was published May 24, 2022
In broadband environments, including but not limited to Enhanced Subscriber Management, (CHAP,... Moderate Unreviewed
CVE-2021-31378 was published May 24, 2022
rudp v0.6 was discovered to contain a memory leak in the component main.c. High Unreviewed
CVE-2020-20665 was published May 24, 2022
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) support for the AutoReconnect... High Unreviewed
CVE-2021-1620 was published May 24, 2022
OpenStack Neutron Denial of Service vulnerability High
CVE-2021-40797 was published for neutron (pip) May 24, 2022
Missing Release of Resource after Effective Lifetime vulnerability in OpenSSL implementation of... High Unreviewed
CVE-2021-34581 was published May 24, 2022
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ... High Unreviewed
CVE-2021-1523 was published May 24, 2022
Live555 through 1.08 has a memory leak in AC3AudioStreamParser for AC3 files. High Unreviewed
CVE-2021-39282 was published May 24, 2022
Due to incorrect JIT optimization, we incorrectly interpreted data from the wrong type of object,... Moderate Unreviewed
CVE-2021-29982 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database