GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,496
Composer 4,170
Erlang 30
GitHub Actions 19
Go 1,981
Maven 5,155
npm 3,700
NuGet 656
pip 3,319
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 232,955

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

244 advisories

Filter by severity

Sort by

Least recently updated

The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial... Moderate Unreviewed

CVE-2016-8697 was published May 17, 2022

The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote attackers to cause a... Moderate Unreviewed

CVE-2016-7499 was published May 17, 2022

The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a... Moderate Unreviewed

CVE-2016-9265 was published May 17, 2022

The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1... Moderate Unreviewed

CVE-2017-7448 was published May 17, 2022

The quantum handling code in ImageMagick allows remote attackers to cause a denial of service ... Moderate Unreviewed

CVE-2016-7530 was published May 17, 2022

RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error... Moderate Unreviewed

CVE-2017-9302 was published May 17, 2022

The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to... Moderate Unreviewed

CVE-2017-11546 was published May 17, 2022

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file. Critical Unreviewed

CVE-2017-11720 was published May 17, 2022

CDirVector::GetTable in dirfunc.hxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial... Moderate Unreviewed

CVE-2017-12924 was published May 17, 2022

epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13... Moderate Unreviewed

CVE-2016-6505 was published May 17, 2022

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for... Moderate Unreviewed

CVE-2017-6270 was published May 17, 2022

NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for... Moderate Unreviewed

CVE-2017-6271 was published May 17, 2022

decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed

CVE-2017-15025 was published May 17, 2022

QEMU, possibly before 2.0.0, allows local users to cause a denial of service (divide-by-zero... Moderate Unreviewed

CVE-2014-0142 was published May 17, 2022

The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote... Moderate Unreviewed

CVE-2016-10219 was published May 17, 2022

The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF 4.0.6 and earlier allows... Moderate Unreviewed

CVE-2016-3622 was published May 17, 2022

The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed

CVE-2017-6835 was published May 17, 2022

The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile)... Moderate Unreviewed

CVE-2017-6833 was published May 17, 2022

In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c... Moderate Unreviewed

CVE-2017-17508 was published May 17, 2022

The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed

CVE-2016-8691 was published May 14, 2022

The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.4 allows... Moderate Unreviewed

CVE-2016-8692 was published May 14, 2022

The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before... High Unreviewed

CVE-2015-3418 was published May 14, 2022

In GNU Libextractor 1.4, there is a Divide-By-Zero in EXTRACTOR_wav_extract_method in... Moderate Unreviewed

CVE-2017-15266 was published May 14, 2022

ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode... High Unreviewed

CVE-2017-1000414 was published May 14, 2022

Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate... Moderate Unreviewed

CVE-2018-2385 was published May 14, 2022

Previous 1 2 3 4 5 6 7 8 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

244 advisories