GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
354 advisories
Filter by severity
tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in...
Moderate
Unreviewed
CVE-2022-25484
was published
Mar 23, 2022
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
High
Unreviewed
CVE-2022-0667
was published
Mar 23, 2022
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific...
High
Unreviewed
CVE-2022-0635
was published
Mar 24, 2022
stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a...
Moderate
Unreviewed
CVE-2022-27938
was published
Mar 27, 2022
Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in...
High
Unreviewed
CVE-2021-30328
was published
Apr 2, 2022
Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon...
High
Unreviewed
CVE-2021-30332
was published
Apr 2, 2022
Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon...
High
Unreviewed
CVE-2021-30329
was published
Apr 2, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component...
High
Unreviewed
CVE-2022-27382
was published
Apr 13, 2022
There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos ==...
High
Unreviewed
CVE-2022-27448
was published
Apr 15, 2022
An authenticated user may trigger an invariant assertion during command dispatch due to incorrect...
Moderate
Unreviewed
CVE-2022-24272
was published
Apr 22, 2022
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of...
High
Unreviewed
CVE-2022-20694
was published
Apr 16, 2022
Receipt of a specifically malformed NDP packet sent from the local area network (LAN) to a device...
Moderate
Unreviewed
CVE-2020-1681
was published
May 24, 2022
On vulnerable configurations, the named daemon may, in some circumstances, terminate with an...
High
Unreviewed
CVE-2022-1183
was published
May 20, 2022
An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An...
High
Unreviewed
CVE-2019-15892
was published
May 24, 2022
In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This...
Moderate
Unreviewed
CVE-2020-16092
was published
May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info...
High
Unreviewed
CVE-2020-11273
was published
May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the...
Moderate
Unreviewed
CVE-2020-20265
was published
May 24, 2022
There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in...
Moderate
Unreviewed
CVE-2022-32978
was published
Jun 11, 2022
Improper handling of writes to virtual GICR control can lead to assertion failure in the...
Moderate
Unreviewed
CVE-2021-35101
was published
Jun 15, 2022
Ethereum Solidity v0.8.14 contains an assertion failure via SMTEncoder::indexOrMemberAssignment()...
Moderate
Unreviewed
CVE-2022-33069
was published
Jun 24, 2022
Possible assertion due to improper validation of rank restriction field in Snapdragon Auto,...
High
Unreviewed
CVE-2021-35073
was published
Jun 15, 2022
Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in...
High
Unreviewed
CVE-2021-30340
was published
Jun 15, 2022
There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int,...
High
Unreviewed
CVE-2022-33024
was published
Jun 24, 2022
There is a reachable assertion in the Internal::TiffReader::visitDirectory function in...
Moderate
Unreviewed
CVE-2017-11683
was published
May 13, 2022
An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions...
Moderate
Unreviewed
CVE-2020-10761
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API