Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

501 advisories

Loading
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an... Critical Unreviewed
CVE-2017-12377 was published May 13, 2022
The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len(). Critical Unreviewed
CVE-2017-12893 was published May 13, 2022
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply(). Critical Unreviewed
CVE-2017-12898 was published May 13, 2022
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in util-print.c... Critical Unreviewed
CVE-2017-12900 was published May 13, 2022
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c... Critical Unreviewed
CVE-2017-12894 was published May 13, 2022
The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print(). Critical Unreviewed
CVE-2017-12895 was published May 13, 2022
The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-12897 was published May 13, 2022
The finish_nested_data function in ext/standard/var_unserializer.re in PHP before 5.6.31, 7.0.x... Critical Unreviewed
CVE-2017-12933 was published May 13, 2022
The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in print-eigrp.c:eigrp_print(). Critical Unreviewed
CVE-2017-12901 was published May 13, 2022
The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print(). Critical Unreviewed
CVE-2017-12985 was published May 13, 2022
The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse(). Critical Unreviewed
CVE-2017-12988 was published May 13, 2022
The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c... Critical Unreviewed
CVE-2017-12986 was published May 13, 2022
The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print(). Critical Unreviewed
CVE-2017-12992 was published May 13, 2022
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print(). Critical Unreviewed
CVE-2017-12999 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). Critical Unreviewed
CVE-2017-12991 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). Critical Unreviewed
CVE-2017-12994 was published May 13, 2022
The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print(). Critical Unreviewed
CVE-2017-12996 was published May 13, 2022
The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c,... Critical Unreviewed
CVE-2017-12993 was published May 13, 2022
The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh(). Critical Unreviewed
CVE-2017-13001 was published May 13, 2022
The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-12998 was published May 13, 2022
The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print(). Critical Unreviewed
CVE-2017-13003 was published May 13, 2022
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c... Critical Unreviewed
CVE-2017-13009 was published May 13, 2022
The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c... Critical Unreviewed
CVE-2017-13008 was published May 13, 2022
The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions. Critical Unreviewed
CVE-2017-13006 was published May 13, 2022
The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c... Critical Unreviewed
CVE-2017-13007 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database