Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

434 advisories

Loading
A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC... High Unreviewed
CVE-2021-24029 was published May 24, 2022
A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may... Moderate Unreviewed
CVE-2021-20286 was published May 24, 2022
Context-specific code was included in a shared jump table; resulting in assertions being... Moderate Unreviewed
CVE-2021-23970 was published May 24, 2022
Possible denial of service while handling host WMI command due to improper validation in... High Unreviewed
CVE-2020-11278 was published May 24, 2022
Denial of service while processing fine timing measurement request (FTMR) frame with reserved... High Unreviewed
CVE-2020-11280 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a... High Unreviewed
CVE-2021-20217 was published May 24, 2022
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data... High Unreviewed
CVE-2020-11218 was published May 24, 2022
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted... High Unreviewed
CVE-2021-20272 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the... High Unreviewed
CVE-2020-36222 was published May 24, 2022
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets... High Unreviewed
CVE-2020-27638 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21... Moderate Unreviewed
CVE-2020-8623 was published May 24, 2022
In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME... Moderate Unreviewed
CVE-2020-8621 was published May 24, 2022
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp... Moderate Unreviewed
CVE-2020-6097 was published May 24, 2022
In BIND 9.15.6 -> 9.16.5, 9.17.0 -> 9.17.3, An attacker who can establish a TCP connection with... Moderate Unreviewed
CVE-2020-8620 was published May 24, 2022
NLnet Labs Routinator has Reachable Assertion vulnerability High
CVE-2022-3029 was published for routinator (Rust) Sep 14, 2022
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user... High Unreviewed
CVE-2020-36382 was published May 24, 2022
Denial of service in MODEM due to reachable assertion in Snapdragon Mobile High Unreviewed
CVE-2022-25671 was published Nov 15, 2022
The assertion `stmt->Dbc->FirstStmt' failed in MonetDB Database Server v11.43.13. High Unreviewed
CVE-2022-34967 was published Aug 4, 2022
An attacker who is permitted to send zone data to a server via zone transfer can exploit this to... Moderate Unreviewed
CVE-2020-8618 was published May 24, 2022
The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci... Moderate Unreviewed
CVE-2019-18844 was published May 24, 2022
Assertion fail in the display_debug_names() function in binutils/dwarf.c may lead to program... Moderate Unreviewed
CVE-2022-38126 was published Sep 2, 2022
In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was... Moderate Unreviewed
CVE-2022-2719 was published Aug 11, 2022
Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via... Moderate Unreviewed
CVE-2022-0865 was published Mar 11, 2022
The flv_write_packet function in libavformat/flvenc.c in FFmpeg through 2.8 does not check for an... High Unreviewed
CVE-2018-15822 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database