Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

189 advisories

Loading
Incorrect implementation in streebog High
CVE-2019-25007 was published for streebog (Rust) Aug 25, 2021
A Denial of Service vulnerability exits in Binaryen 103 due to an assertion abort in wasm:... High Unreviewed
CVE-2021-45290 was published Dec 22, 2021
Possible assertion in QOS request due to improper validation when multiple add or update request... High Unreviewed
CVE-2021-30335 was published Jan 4, 2022
Possible assertion due to lack of input validation in PUSCH configuration in Snapdragon Auto,... High Unreviewed
CVE-2021-30293 was published Jan 4, 2022
Possible assertion due to improper handling of IPV6 packet with invalid length in destination... High Unreviewed
CVE-2021-30273 was published Jan 4, 2022
There is an Assertion `scaling_list_pred_matrix_id_delta==1' failed at sps.cc:925 in libde265 v1... High Unreviewed
CVE-2021-36409 was published Jan 12, 2022
Improper validation of function pointer type with actual function signature can lead to assertion... High Unreviewed
CVE-2021-30353 was published Jan 14, 2022
Possible denial of service due to improper validation of DNS response when DNS client requests... High Unreviewed
CVE-2021-30307 was published Jan 14, 2022
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in... High Unreviewed
CVE-2021-30287 was published Jan 14, 2022
MariaDB before 10.6.2 allows an application crash because of mishandling of a pushdown from a... High Unreviewed
CVE-2021-46666 was published Feb 2, 2022
Possible assertion due to improper size validation while processing the DownlinkPreemption IE in... High Unreviewed
CVE-2021-30326 was published Feb 12, 2022
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0 High Unreviewed
CVE-2022-0667 was published Mar 23, 2022
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific... High Unreviewed
CVE-2022-0635 was published Mar 24, 2022
Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-30329 was published Apr 2, 2022
Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon... High Unreviewed
CVE-2021-30332 was published Apr 2, 2022
Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in... High Unreviewed
CVE-2021-30328 was published Apr 2, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27382 was published Apr 13, 2022
There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos ==... High Unreviewed
CVE-2022-27448 was published Apr 15, 2022
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of... High Unreviewed
CVE-2022-20694 was published Apr 16, 2022
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT... High Unreviewed
CVE-2011-3596 was published Apr 22, 2022
oftpd before 0.3.7 allows remote attackers to cause a denial of service (daemon abort) via a (1)... High Unreviewed
CVE-2006-6767 was published May 1, 2022
In GPAC 2.1-DEV-rev87-g053aae8-master, function BS_ReadByte() in utils/bitstream.c has a failed... High Unreviewed
CVE-2022-29339 was published May 6, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27498 was published May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27500 was published May 13, 2022
"deny-answer-aliases" is a little-used feature intended to help recursive server operators... High Unreviewed
CVE-2018-5740 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database