GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,927
Composer 4,272
Erlang 31
GitHub Actions 21
Go 2,047
Maven 5,232
npm 3,739
NuGet 668
pip 3,415
Pub 12
RubyGems 891
Rust 868
Swift 36

Unreviewed advisories

All unreviewed 238,436

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

169 advisories

Filter by severity

Sort by

Least recently updated

The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci... Moderate Unreviewed

CVE-2019-18844 was published May 24, 2022

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea... Moderate Unreviewed

CVE-2019-6473 was published May 24, 2022

A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit... Moderate Unreviewed

CVE-2019-6472 was published May 24, 2022

A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an... Moderate Unreviewed

CVE-2019-13223 was published May 24, 2022

J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. Moderate Unreviewed

CVE-2019-14383 was published May 24, 2022

DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. Moderate Unreviewed

CVE-2019-14382 was published May 24, 2022

Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to assertion... Moderate Unreviewed

CVE-2019-13113 was published May 24, 2022

The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause... Moderate Unreviewed

CVE-2016-9388 was published May 14, 2022

In Exiv2 0.26, an assertion failure in BigTiffImage::readData in bigtiffimage.cpp results in an... Moderate Unreviewed

CVE-2018-9303 was published May 13, 2022

JasPer 2.0.14 allows denial of service via a reachable assertion in the function jpc_firstone in... Moderate Unreviewed

CVE-2018-9055 was published May 13, 2022

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11... Moderate Unreviewed

CVE-2018-4113 was published May 13, 2022

The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows... Moderate Unreviewed

CVE-2018-17096 was published May 13, 2022

In libavcodec in FFmpeg 4.0.1, improper maintenance of the consistency between the context... Moderate Unreviewed

CVE-2018-13304 was published May 13, 2022

The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows remote... Moderate Unreviewed

CVE-2018-10963 was published May 13, 2022

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo,... Moderate Unreviewed

CVE-2017-9501 was published May 13, 2022

In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the function... Moderate Unreviewed

CVE-2017-9500 was published May 13, 2022

In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function... Moderate Unreviewed

CVE-2017-9499 was published May 13, 2022

The mad_layer_III function in layer3.c in Underbit MAD libmad 0.15.1b, if NDEBUG is omitted,... Moderate Unreviewed

CVE-2017-8372 was published May 13, 2022

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet... Moderate Unreviewed

CVE-2017-7479 was published May 13, 2022

seeko.c in zziplib 0.13.62 allows remote attackers to cause a denial of service (assertion... Moderate Unreviewed

CVE-2017-5981 was published May 13, 2022

User process can perform the kernel DOS in ashmem when doing cache maintenance operation in all... Moderate Unreviewed

CVE-2017-18169 was published May 13, 2022

In Exiv2 0.26, there is a reachable assertion in the readHeader function in bigtiffimage.cpp,... Moderate Unreviewed

CVE-2017-17722 was published May 13, 2022

RADOS Gateway in Ceph 12.1.0 through 12.2.1 allows remote authenticated users to cause a denial... Moderate Unreviewed

CVE-2017-16818 was published May 13, 2022

ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG... Moderate Unreviewed

CVE-2017-14649 was published May 13, 2022

There is a reachable assertion abort in the function TIFFWriteDirectorySec() in LibTIFF 4.0.8,... Moderate Unreviewed

CVE-2017-13726 was published May 13, 2022

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

169 advisories