Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,438
Erlang
29
GitHub Actions
16
Go
1,663
Maven
4,922
npm
3,450
NuGet
594
pip
2,853
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

93 advisories

tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c. Critical Unreviewed
CVE-2017-11543 was published May 14, 2022
Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c... Critical Unreviewed
CVE-2017-13011 was published May 14, 2022
Directory traversal vulnerability in Cybozu Dezie 8.0.2 to 8.1.2 allows remote attackers to read... Critical Unreviewed
CVE-2018-0705 was published May 14, 2022
Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1... Critical Unreviewed
CVE-2016-0705 was published May 14, 2022
The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several... Critical Unreviewed
CVE-2017-13690 was published May 13, 2022
The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print(). Critical Unreviewed
CVE-2017-13688 was published May 13, 2022
The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print(). Critical Unreviewed
CVE-2017-13689 was published May 13, 2022
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-13055 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c... Critical Unreviewed
CVE-2017-13053 was published May 13, 2022
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c... Critical Unreviewed
CVE-2017-13054 was published May 13, 2022
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). Critical Unreviewed
CVE-2017-13047 was published May 13, 2022
The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print(). Critical Unreviewed
CVE-2017-13052 was published May 13, 2022
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). Critical Unreviewed
CVE-2017-13048 was published May 13, 2022
The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c... Critical Unreviewed
CVE-2017-13050 was published May 13, 2022
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). Critical Unreviewed
CVE-2017-13038 was published May 13, 2022
The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print(). Critical Unreviewed
CVE-2017-13045 was published May 13, 2022
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print(). Critical Unreviewed
CVE-2017-13044 was published May 13, 2022
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). Critical Unreviewed
CVE-2017-13051 was published May 13, 2022
The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print(). Critical Unreviewed
CVE-2017-13049 was published May 13, 2022
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c... Critical Unreviewed
CVE-2017-13041 was published May 13, 2022
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print(). Critical Unreviewed
CVE-2017-13042 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn(). Critical Unreviewed
CVE-2017-13043 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). Critical Unreviewed
CVE-2017-13046 was published May 13, 2022
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-13035 was published May 13, 2022
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). Critical Unreviewed
CVE-2017-13033 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API