Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,904
Erlang
38
GitHub Actions
38
Go
2,566
Maven
5,000+
npm
4,237
NuGet
753
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

612 advisories

Loading
A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an... Moderate Unreviewed
CVE-2019-13112 was published May 24, 2022
A flaw was found in the Linux kernel's vfio interface implementation that permits violation of... Moderate Unreviewed
CVE-2019-3882 was published May 24, 2022
OpenStack Compute (Nova) does not verify the virtual size of a QCOW2 image Moderate
CVE-2013-2096 was published for nova (pip) May 17, 2022
priority vulnerable to denial of service Moderate
CVE-2016-6580 was published for priority (pip) May 17, 2022
Microsoft Communicator, and Communicator in Microsoft Office 2010 beta, allows remote attackers... Moderate Unreviewed
CVE-2008-5180 was published May 17, 2022
Django denial of service via empty session record creation Moderate
CVE-2015-5963 was published for Django (pip) May 17, 2022
MarkLee131
Credited to MarkLee131
tar-split memory exhaustion Moderate
CVE-2017-14992 was published for github.com/vbatts/tar-split (Go) May 17, 2022
xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by ... Moderate Unreviewed
CVE-2022-30775 was published May 17, 2022
Apache Tika vulnerable to uncontrolled memory consumption Moderate
CVE-2022-25169 was published for org.apache.tika:tika (Maven) May 17, 2022
In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PoDoFo::PdfVecObjects::Reserve... Moderate Unreviewed
CVE-2018-5783 was published May 13, 2022
In PoDoFo 0.9.5, there is an uncontrolled memory allocation in the PdfParser::ReadXRefSubsection... Moderate Unreviewed
CVE-2018-5296 was published May 13, 2022
The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 0.26 allows remote attackers... Moderate Unreviewed
CVE-2018-4868 was published May 13, 2022
An issue was discovered in Bento4 1.5.1-627. The AP4_StcoAtom class in Core/Ap4StcoAtom.cpp has... Moderate Unreviewed
CVE-2018-20659 was published May 13, 2022
An attempted excessive memory allocation was discovered in the function tinyexr::AllocateImage in... Moderate Unreviewed
CVE-2018-20652 was published May 13, 2022
An issue was discovered in EnsureCapacity in Core/Ap4Array.h in Bento4 1.5.1-627. Crafted MP4... Moderate Unreviewed
CVE-2018-20095 was published May 13, 2022
There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and... Moderate Unreviewed
CVE-2018-16645 was published May 13, 2022
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30,... Moderate Unreviewed
CVE-2018-13033 was published May 13, 2022
An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The Plane function in image... Moderate Unreviewed
CVE-2018-10971 was published May 13, 2022
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a... Moderate Unreviewed
CVE-2017-9039 was published May 13, 2022
An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found... Moderate Unreviewed
CVE-2017-18219 was published May 13, 2022
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed
CVE-2017-14938 was published May 13, 2022
The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS... Moderate Unreviewed
CVE-2017-12132 was published May 13, 2022
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which... Moderate Unreviewed
CVE-2017-12144 was published May 13, 2022
A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG... Moderate Unreviewed
CVE-2017-2587 was published May 13, 2022
A high rate of VLAN authentication attempts sent from an adjacent host on the local broadcast... Moderate Unreviewed
CVE-2018-0006 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database