Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,984
Erlang
29
GitHub Actions
16
Go
1,771
Maven
4,995
npm
3,541
NuGet
617
pip
3,117
Pub
10
RubyGems
838
Rust
788
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

102 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new... Critical Unreviewed
CVE-2024-35960 was published May 20, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix RCU... Critical Unreviewed
CVE-2024-27053 was published May 1, 2024
An issue in RedisGraph v.2.12.10 allows an attacker to execute arbitrary code and cause a denial... Critical Unreviewed
CVE-2023-47003 was published Nov 16, 2023
The hardware emulation in the of_dpa_cmd_add_l2_flood of rocker device model in QEMU, as used in... Critical Unreviewed
CVE-2022-36648 was published Aug 22, 2023
An issue was found in MojoJson v1.2.3 allows attackers to execute arbitary code via the destroy... Critical Unreviewed
CVE-2023-23087 was published Feb 3, 2023
In libarchive 3.6.1, the software does not check for an error after calling calloc function that... Critical Unreviewed
CVE-2022-36227 was published Nov 22, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body... Critical Unreviewed
CVE-2021-1946 was published May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5... Critical Unreviewed
CVE-2021-28300 was published May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to... Critical Unreviewed
CVE-2020-11168 was published May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in... Critical Unreviewed
CVE-2019-8572 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8205 was published May 24, 2022
Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c. Critical Unreviewed
CVE-2019-16092 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8045 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8017 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8006 was published May 24, 2022
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference... Critical Unreviewed
CVE-2019-10993 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7076 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7066 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7051 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7054 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7046 was published May 24, 2022
libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and... Critical Unreviewed
CVE-2016-3821 was published May 17, 2022
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm MDSS driver in Android before 2016-10-05... Critical Unreviewed
CVE-2016-6692 was published May 17, 2022
The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7... Critical Unreviewed
CVE-2016-5690 was published May 17, 2022
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to... Critical Unreviewed
CVE-2016-5689 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API