Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,049
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

201 advisories

Loading
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a... High Unreviewed
CVE-2023-34194 was published Dec 13, 2023
Denial of Service via reachable assertion High
CVE-2022-24777 was published for github.com/grpc/grpc-swift (Swift) Jun 9, 2023
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability... High Unreviewed
CVE-2022-36440 was published Apr 3, 2023
oftpd before 0.3.7 allows remote attackers to cause a denial of service (daemon abort) via a (1)... High Unreviewed
CVE-2006-6767 was published May 1, 2022
A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL... High Unreviewed
CVE-2023-2156 was published May 10, 2023
Transient DOS while processing 11AZ RTT management action frame received through OTA. High Unreviewed
CVE-2023-43523 was published Feb 6, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to... High Unreviewed
CVE-2024-25445 was published Feb 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1 allows denial of service via a reachable... High Unreviewed
CVE-2020-36420 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. High Unreviewed
CVE-2019-25041 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an... High Unreviewed
CVE-2019-25037 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. High Unreviewed
CVE-2019-25036 was published May 24, 2022
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT... High Unreviewed
CVE-2011-3596 was published Apr 22, 2022
In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in... High Unreviewed
CVE-2019-6468 was published May 24, 2022
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit... High Unreviewed
CVE-2019-6469 was published May 24, 2022
A defect in code added to support QNAME minimization can cause named to exit with an assertion... High Unreviewed
CVE-2019-6476 was published May 24, 2022
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;... High Unreviewed
CVE-2018-5735 was published May 24, 2022
Transient DOS due to reachable assertion in Modem during OSI decode scheduling. High Unreviewed
CVE-2022-34144 was published May 2, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross... High Unreviewed
CVE-2022-40508 was published May 2, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be... High Unreviewed
CVE-2023-23759 was published May 19, 2023
Assertion occurs while processing Reconfiguration message due to improper validation High Unreviewed
CVE-2022-22060 was published Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration. High Unreviewed
CVE-2022-33251 was published Jun 6, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from... High Unreviewed
CVE-2022-40538 was published Jun 6, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34868 was published Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34867 was published Jun 14, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database