Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

434 advisories

Loading
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1296... High Unreviewed
CVE-2017-13750 was published May 13, 2022
There is a reachable assertion abort in the function jpc_floorlog2() in jpc/jpc_math.c in JasPer... High Unreviewed
CVE-2017-13747 was published May 13, 2022
There is a reachable assertion abort in the function jpc_pi_nextrpcl() in jpc/jpc_t2cod.c in... High Unreviewed
CVE-2017-13749 was published May 13, 2022
There is a reachable assertion abort in the function jpc_dec_process_siz() in jpc/jpc_dec.c:1297... High Unreviewed
CVE-2017-13746 was published May 13, 2022
The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a... High Unreviewed
CVE-2016-9399 was published May 13, 2022
The jpc_dequantize function in jpc_dec.c in JasPer 1.900.13 allows remote attackers to cause a... High Unreviewed
CVE-2016-9397 was published May 13, 2022
The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to... High Unreviewed
CVE-2016-9398 was published May 13, 2022
An issue was discovered in cairo 1.16.0. There is an assertion problem in the function... Moderate Unreviewed
CVE-2019-6461 was published May 13, 2022
A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker... High Unreviewed
CVE-2017-3139 was published May 13, 2022
There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound... Moderate Unreviewed
CVE-2017-15371 was published May 13, 2022
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting... High Unreviewed
CVE-2018-17205 was published May 13, 2022
An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting... Moderate Unreviewed
CVE-2018-17204 was published May 13, 2022
An assertion-failure flaw was found in Qemu before 2.10.1, in the Network Block Device (NBD)... High Unreviewed
CVE-2017-7539 was published May 13, 2022
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17.... Moderate Unreviewed
CVE-2018-20217 was published May 13, 2022
"deny-answer-aliases" is a little-used feature intended to help recursive server operators... High Unreviewed
CVE-2018-5740 was published May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27498 was published May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27500 was published May 13, 2022
There is an assertion failure error in stbi__jpeg_huff_decode, stb_image.h:1894 in libsixel... Moderate Unreviewed
CVE-2022-29977 was published May 12, 2022
In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed... High Unreviewed
CVE-2022-29339 was published May 6, 2022
KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG... Moderate Unreviewed
CVE-2006-6811 was published May 1, 2022
oftpd before 0.3.7 allows remote attackers to cause a denial of service (daemon abort) via a (1)... High Unreviewed
CVE-2006-6767 was published May 1, 2022
OpenLDAP before 2.3.29 allows remote attackers to cause a denial of service (daemon crash) via... Moderate Unreviewed
CVE-2006-5779 was published May 1, 2022
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2006-4095 was published May 1, 2022
quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal Moderate Unreviewed
CVE-2012-5521 was published Apr 23, 2022
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT... High Unreviewed
CVE-2011-3596 was published Apr 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database