Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

563 advisories

Loading
In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg_dev_end_tile in fitz/svg... Moderate Unreviewed
CVE-2018-19777 was published May 13, 2022
** DISPUTED ** The deserialize function in serialize-to-js through 1.1.1 allows attackers to... High Unreviewed
CVE-2017-15871 was published May 13, 2022
sas/readstat_sas7bcat_read.c in libreadstat.a in ReadStat 0.1.1 has an infinite loop. High Unreviewed
CVE-2018-11365 was published May 13, 2022
In MuPDF 1.12.0, there is an infinite loop vulnerability and application hang in the... Moderate Unreviewed
CVE-2018-5686 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector... High Unreviewed
CVE-2018-14368 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite... High Unreviewed
CVE-2018-19622 was published May 13, 2022
The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers... Moderate Unreviewed
CVE-2018-7751 was published May 13, 2022
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed
CVE-2018-18701 was published May 13, 2022
An issue was discovered in cp-demangle.c in GNU libiberty, as distributed in GNU Binutils 2.31.... Moderate Unreviewed
CVE-2018-18700 was published May 13, 2022
The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU allows local guest OS... Moderate Unreviewed
CVE-2016-4453 was published May 13, 2022
ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to... Moderate Unreviewed
CVE-2015-7850 was published May 13, 2022
The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows remote... Moderate Unreviewed
CVE-2017-18267 was published May 13, 2022
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a... Moderate Unreviewed
CVE-2018-16646 was published May 13, 2022
The Linux kernel before 2.6.37 does not properly implement a certain clock-update optimization,... Moderate Unreviewed
CVE-2011-4621 was published May 13, 2022
The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to... Moderate Unreviewed
CVE-2015-8900 was published May 13, 2022
Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and... Moderate Unreviewed
CVE-2012-1186 was published May 13, 2022
ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2015-8901 was published May 13, 2022
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows... Moderate Unreviewed
CVE-2015-8903 was published May 13, 2022
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote... Moderate Unreviewed
CVE-2015-8902 was published May 13, 2022
The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does... Moderate Unreviewed
CVE-2011-2213 was published May 13, 2022
The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent... Moderate Unreviewed
CVE-2017-6314 was published May 13, 2022
net/ipv4/inet_diag.c in the Linux kernel before 2.6.37-rc2 does not properly audit INET_DIAG... Moderate Unreviewed
CVE-2010-3880 was published May 13, 2022
In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function... High Unreviewed
CVE-2017-17681 was published May 13, 2022
In ImageMagick 7.0.7-28, there is an infinite loop in the ReadOneMNGImage function of the coders... Moderate Unreviewed
CVE-2018-10177 was published May 13, 2022
In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders... Moderate Unreviewed
CVE-2018-18024 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database