GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
219 advisories
Filter by severity
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of...
Moderate
Unreviewed
CVE-2021-1440
was published
Nov 18, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to...
Moderate
Unreviewed
CVE-2024-50615
was published
Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application...
Moderate
Unreviewed
CVE-2024-50614
was published
Oct 28, 2024
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in...
Moderate
Unreviewed
CVE-2024-50613
was published
Oct 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't readahead the...
Moderate
Unreviewed
CVE-2024-49932
was published
Oct 21, 2024
wasmtime has a runtime crash when combining tail calls with trapping imports
Moderate
CVE-2024-47763
was published
for
wasmtime
(Rust)
Oct 9, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net...
Moderate
Unreviewed
CVE-2024-8354
was published
Sep 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
closures: Change BUG_ON() to...
Moderate
Unreviewed
CVE-2024-42252
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: page_ref: remove...
Moderate
Unreviewed
CVE-2024-42251
was published
Aug 8, 2024
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR...
Moderate
Unreviewed
CVE-2024-23350
was published
Aug 5, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc...
Moderate
Unreviewed
CVE-2024-3374
was published
May 14, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via...
Moderate
Unreviewed
CVE-2024-33255
was published
Apr 26, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function...
Moderate
Unreviewed
CVE-2024-3567
was published
Apr 10, 2024
In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an...
Moderate
Unreviewed
CVE-2024-23850
was published
Jan 23, 2024
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for...
Moderate
Unreviewed
CVE-2023-5871
was published
Nov 27, 2023
cordova-plugin-fingerprint-aio DoS vulnerability
Moderate
CVE-2021-43849
was published
for
cordova-plugin-fingerprint-aio
(npm)
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the...
Moderate
Unreviewed
CVE-2023-38473
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()...
Moderate
Unreviewed
CVE-2023-38470
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse()...
Moderate
Unreviewed
CVE-2023-38472
was published
Nov 2, 2023
A vulnerability was found in Avahi, where a reachable assertion exists in...
Moderate
Unreviewed
CVE-2023-38469
was published
Nov 2, 2023
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.
Moderate
Unreviewed
CVE-2023-38471
was published
Nov 2, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of...
Moderate
Unreviewed
CVE-2022-37051
was published
Aug 22, 2023
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function...
Moderate
Unreviewed
CVE-2022-35205
was published
Aug 22, 2023
An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead...
Moderate
Unreviewed
CVE-2022-38349
was published
Aug 22, 2023
A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of...
Moderate
Unreviewed
CVE-2022-37052
was published
Aug 22, 2023
ProTip!
Advisories are also available from the
GraphQL API