Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

267 advisories

Loading
J2B in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. Moderate Unreviewed
CVE-2019-14383 was published May 24, 2022
`CHECK` fail via inputs in `SdcaOptimizer` Moderate
CVE-2022-41899 was published for tensorflow (pip) Nov 21, 2022
`CHECK_EQ` fail via input in `SparseMatrixNNZ` Moderate
CVE-2022-41901 was published for tensorflow (pip) Nov 21, 2022
Incomplete validation in signal ops leads to crashes in TensorFlow Moderate
CVE-2022-29213 was published for tensorflow (pip) May 24, 2022
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a... Moderate Unreviewed
CVE-2021-3531 was published May 24, 2022
cordova-plugin-fingerprint-aio DoS vulnerability Moderate
CVE-2021-43849 was published for cordova-plugin-fingerprint-aio (npm) Nov 2, 2023
0xWise64
malformed proposed intoto entries can cause a panic Moderate
CVE-2023-33199 was published for github.com/sigstore/rekor (Go) May 26, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()... Moderate Unreviewed
CVE-2023-38472 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function. Moderate Unreviewed
CVE-2023-38471 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()... Moderate Unreviewed
CVE-2023-38470 was published Nov 2, 2023
A vulnerability was found in Avahi, where a reachable assertion exists in... Moderate Unreviewed
CVE-2023-38469 was published Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the... Moderate Unreviewed
CVE-2023-38473 was published Nov 2, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of... Moderate Unreviewed
CVE-2022-37051 was published Aug 22, 2023
An authorized user may trigger an invariant which may result in denial of service or server exit... Moderate Unreviewed
CVE-2021-32037 was published May 24, 2022
KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG... Moderate Unreviewed
CVE-2006-6811 was published May 1, 2022
BIND before 9.2.6-P1 and 9.3.x before 9.3.2-P1 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2006-4095 was published May 1, 2022
quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal Moderate Unreviewed
CVE-2012-5521 was published Apr 23, 2022
An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea... Moderate Unreviewed
CVE-2019-6473 was published May 24, 2022
A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit... Moderate Unreviewed
CVE-2019-6472 was published May 24, 2022
In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.11.21-S1... Moderate Unreviewed
CVE-2020-8622 was published May 24, 2022
llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements... Moderate Unreviewed
CVE-2023-29935 was published May 5, 2023
Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component... Moderate Unreviewed
CVE-2023-31913 was published May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31918 was published May 12, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31919 was published May 12, 2023
Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the... Moderate Unreviewed
CVE-2023-31916 was published May 12, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database