Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

140 advisories

Loading
** DISPUTED ** An issue has been found in HTSlib 1.8. It is a memory leak in bgzf_getline in bgzf... High Unreviewed
CVE-2018-13843 was published May 13, 2022
** DISPUTED ** Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to... High Unreviewed
CVE-2018-13420 was published May 13, 2022
There is a memory leak in util/parser.c in libming 0.4.8, which will lead to a denial of service... High Unreviewed
CVE-2018-13066 was published May 13, 2022
tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h. High Unreviewed
CVE-2018-12093 was published May 13, 2022
An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak... High Unreviewed
CVE-2018-11097 was published May 13, 2022
Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library... High Unreviewed
CVE-2018-1000215 was published May 13, 2022
The function named ReadICONImage in coders\icon.c in ImageMagick 7.0.5-5 has a memory leak... High Unreviewed
CVE-2017-8765 was published May 13, 2022
The function coff_set_alignment_hook in coffcode.h in Binary File Descriptor (BFD) library (aka... High Unreviewed
CVE-2017-8421 was published May 13, 2022
In Eclipse Mosquitto 1.4.15 and earlier, a Memory Leak vulnerability was found within the... High Unreviewed
CVE-2017-7654 was published May 13, 2022
In TigerVNC 1.7.1 (CConnection.cxx CConnection::CConnection), an unauthenticated client can cause... High Unreviewed
CVE-2017-7396 was published May 13, 2022
In TigerVNC 1.7.1 (SSecurityVeNCrypt.cxx SSecurityVeNCrypt::SSecurityVeNCrypt), an... High Unreviewed
CVE-2017-7392 was published May 13, 2022
Memory leak in the login_user function in saslserv/main.c in saslserv/main.so in Atheme 7.2.7... High Unreviewed
CVE-2017-6384 was published May 13, 2022
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe... High Unreviewed
CVE-2017-6135 was published May 13, 2022
The SAP Message Server HTTP daemon in SAP KERNEL 7.21-7.49 allows remote attackers to cause a... High Unreviewed
CVE-2017-5997 was published May 13, 2022
A vulnerability in the implementation of Common Industrial Protocol (CIP) functionality in Cisco... High Unreviewed
CVE-2017-3812 was published May 13, 2022
AC6005 with software V200R006C10, AC6605 with software V200R006C10 have a DoS Vulnerability. An... High Unreviewed
CVE-2017-2700 was published May 13, 2022
On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a... High Unreviewed
CVE-2017-2315 was published May 13, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,... High Unreviewed
CVE-2017-17257 was published May 13, 2022
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10,... High Unreviewed
CVE-2017-17256 was published May 13, 2022
In Bftpd before 4.7, there is a memory leak in the file rename function. High Unreviewed
CVE-2017-16892 was published May 13, 2022
** DISPUTED ** LibTIFF 4.0.8 has multiple memory leak vulnerabilities, which allow attackers to... High Unreviewed
CVE-2017-16232 was published May 13, 2022
Huawei CloudEngine 12800 V100R003C00, V100R005C00, V100R005C10, V100R006C00,CloudEngine 5800... High Unreviewed
CVE-2017-15349 was published May 13, 2022
Qemu through 2.10.0 allows remote attackers to cause a memory leak by triggering slow data... High Unreviewed
CVE-2017-15268 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was... High Unreviewed
CVE-2017-15189 was published May 13, 2022
ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c. High Unreviewed
CVE-2017-15033 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database