Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,896
Erlang
38
GitHub Actions
38
Go
2,558
Maven
5,000+
npm
4,234
NuGet
751
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,291 advisories

Loading
A denial of service vulnerability in the Android media framework (libskia). Product: Android.... High Unreviewed
CVE-2017-0771 was published May 13, 2022
The ReadCINImage function in coders/cin.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1... High Unreviewed
CVE-2017-11525 was published May 13, 2022
In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which... Moderate Unreviewed
CVE-2017-12144 was published May 13, 2022
IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash... High Unreviewed
CVE-2017-1227 was published May 13, 2022
The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS... Moderate Unreviewed
CVE-2017-12132 was published May 13, 2022
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage... High Unreviewed
CVE-2017-12432 was published May 13, 2022
The TIFFReadDirEntryArray function in tif_read.c in LibTIFF 4.0.8 mishandles memory allocation... High Unreviewed
CVE-2017-12944 was published May 13, 2022
A vulnerability in the Android media framework (libavc) related to handling dec_hdl memory... High Unreviewed
CVE-2017-13189 was published May 13, 2022
A vulnerability in the Android media framework (libhevc) related to handling ps_codec_obj memory... High Unreviewed
CVE-2017-13190 was published May 13, 2022
The C++ symbol demangler routine in cplus-dem.c in libiberty, as distributed in GNU Binutils 2.29... High Unreviewed
CVE-2017-13716 was published May 13, 2022
ONOS vulnerable to denial of service due to unrestricted NettyMessagingManager payload High
CVE-2017-13763 was published for org.onosproject:onos-base (Maven) May 13, 2022
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c. High Unreviewed
CVE-2017-14531 was published May 13, 2022
_bfd_elf_slurp_version_tables in elf.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed
CVE-2017-14938 was published May 13, 2022
In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function... High Unreviewed
CVE-2017-18028 was published May 13, 2022
An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found... Moderate Unreviewed
CVE-2017-18219 was published May 13, 2022
Vulnerability in the Oracle iReceivables component of Oracle E-Business Suite (subcomponent: Self... High Unreviewed
CVE-2017-3555 was published May 13, 2022
A vulnerability in the authentication, authorization, and accounting (AAA) implementation of... High Unreviewed
CVE-2017-3883 was published May 13, 2022
A STUN server in conjunction with a large number of "webkitRTCPeerConnection" objects can be used... High Unreviewed
CVE-2017-5388 was published May 13, 2022
libplist allows attackers to cause a denial of service (large memory allocation and crash) via... High Unreviewed
CVE-2017-5835 was published May 13, 2022
httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a... High Unreviewed
CVE-2017-5850 was published May 13, 2022
A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine ... High Unreviewed
CVE-2017-6653 was published May 13, 2022
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an... Critical Unreviewed
CVE-2017-6640 was published May 13, 2022
SAP AS JAVA SSO Authentication Library 2.0 through 3.0 allow remote attackers to cause a denial... High Unreviewed
CVE-2017-7696 was published May 13, 2022
** DISPUTED ** The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1... High Unreviewed
CVE-2017-7963 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, kernel memory can... High Unreviewed
CVE-2017-8253 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database