GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,245
Erlang
31
GitHub Actions
21
Go
2,010
Maven
5,000+
npm
3,718
NuGet
662
pip
3,391
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
354 advisories
Filter by severity
In Bluetooth firmware, there is a possible firmware asssert due to improper handling of...
Moderate
Unreviewed
CVE-2024-20139
was published
Dec 2, 2024
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of...
Moderate
Unreviewed
CVE-2021-1440
was published
Nov 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't readahead the...
Moderate
Unreviewed
CVE-2024-49932
was published
Oct 21, 2024
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen...
High
Unreviewed
CVE-2024-23385
was published
Nov 4, 2024
In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an...
Moderate
Unreviewed
CVE-2024-23850
was published
Jan 23, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to...
Moderate
Unreviewed
CVE-2024-50615
was published
Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application...
Moderate
Unreviewed
CVE-2024-50614
was published
Oct 28, 2024
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in...
Moderate
Unreviewed
CVE-2024-50613
was published
Oct 28, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via...
High
Unreviewed
CVE-2024-10455
was published
Oct 28, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to...
High
Unreviewed
CVE-2024-20094
was published
Oct 7, 2024
In wlan firmware, there is a possible firmware assertion due to improper input handling. This...
High
Unreviewed
CVE-2023-32820
was published
Oct 2, 2023
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net...
Moderate
Unreviewed
CVE-2024-8354
was published
Sep 19, 2024
The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause...
Moderate
Unreviewed
CVE-2016-9388
was published
May 14, 2022
In the Linux kernel, the following vulnerability has been resolved:
closures: Change BUG_ON() to...
Moderate
Unreviewed
CVE-2024-42252
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: page_ref: remove...
Moderate
Unreviewed
CVE-2024-42251
was published
Aug 8, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure...
High
Unreviewed
CVE-2023-5517
was published
Feb 13, 2024
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR...
Moderate
Unreviewed
CVE-2024-23350
was published
Aug 5, 2024
Client queries that trigger serving stale data and that also require lookups in local...
High
Unreviewed
CVE-2024-4076
was published
Jul 23, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via...
Moderate
Unreviewed
CVE-2024-33255
was published
Apr 26, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache...
High
Unreviewed
CVE-2024-33601
was published
May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS...
High
Unreviewed
CVE-2024-34475
was published
May 5, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an...
High
Unreviewed
CVE-2024-31744
was published
Apr 19, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc...
Moderate
Unreviewed
CVE-2024-3374
was published
May 14, 2024
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for...
Moderate
Unreviewed
CVE-2023-5871
was published
Nov 27, 2023
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment...
High
Unreviewed
CVE-2023-43529
was published
May 6, 2024
ProTip!
Advisories are also available from the
GraphQL API