Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,049
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

201 advisories

Loading
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;... High Unreviewed
CVE-2018-5735 was published May 24, 2022
receive.c in fastd before v21 allows denial of service (assertion failure) when receiving packets... High Unreviewed
CVE-2020-27638 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the... High Unreviewed
CVE-2020-36222 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X... High Unreviewed
CVE-2020-36230 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... High Unreviewed
CVE-2021-3326 was published May 24, 2022
In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur... High Unreviewed
CVE-2021-27212 was published May 24, 2022
Possible denial of service while handling host WMI command due to improper validation in... High Unreviewed
CVE-2020-11278 was published May 24, 2022
Denial of service while processing fine timing measurement request (FTMR) frame with reserved... High Unreviewed
CVE-2020-11280 was published May 24, 2022
Arithmetic overflow can happen while processing NOA IE due to improper error handling in... High Unreviewed
CVE-2020-11296 was published May 24, 2022
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted... High Unreviewed
CVE-2021-20272 was published May 24, 2022
A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC... High Unreviewed
CVE-2021-24029 was published May 24, 2022
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data... High Unreviewed
CVE-2020-11218 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a... High Unreviewed
CVE-2021-20217 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. High Unreviewed
CVE-2019-25041 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an... High Unreviewed
CVE-2019-25037 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. High Unreviewed
CVE-2019-25036 was published May 24, 2022
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8... High Unreviewed
CVE-2021-25215 was published May 24, 2022
Possible denial of service scenario due to improper handling of group management action frame in... High Unreviewed
CVE-2021-1925 was published May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info... High Unreviewed
CVE-2020-11273 was published May 24, 2022
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto,... High Unreviewed
CVE-2020-11274 was published May 24, 2022
In function lys_node_free() in libyang <= v1.0.225, it asserts that the value of node->module can... High Unreviewed
CVE-2021-28905 was published May 24, 2022
A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a... High Unreviewed
CVE-2020-25710 was published May 24, 2022
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user... High Unreviewed
CVE-2020-36382 was published May 24, 2022
Reachable assertion is possible while processing peer association WLAN message from host and... High Unreviewed
CVE-2021-1937 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database