GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,905
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,338
Maven 5,649
npm 3,973
NuGet 715
pip 3,769
Pub 12
RubyGems 923
Rust 976
Swift 38

Unreviewed advisories

All unreviewed 259,860

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

83 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF. High Unreviewed

CVE-2018-11813 was published May 13, 2022

In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector... High Unreviewed

CVE-2018-14342 was published May 13, 2022

A denial of service vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed

CVE-2017-0775 was published May 13, 2022

The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability... High Unreviewed

CVE-2017-11188 was published May 13, 2022

The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a... High Unreviewed

CVE-2017-11549 was published May 13, 2022

The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6... High Unreviewed

CVE-2017-11505 was published May 13, 2022

The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability... Moderate Unreviewed

CVE-2017-11360 was published May 13, 2022

In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File)... High Unreviewed

CVE-2017-14222 was published May 13, 2022

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of... High Unreviewed

CVE-2017-14055 was published May 13, 2022

In M3UParser::parse of M3UParser.cpp, there is a memory resource exhaustion due to a large loop... Moderate Unreviewed

CVE-2017-13279 was published May 13, 2022

In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of... High Unreviewed

CVE-2017-14054 was published May 13, 2022

In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of... High Unreviewed

CVE-2017-14056 was published May 13, 2022

In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and... High Unreviewed

CVE-2017-14059 was published May 13, 2022

In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause... High Unreviewed

CVE-2017-14057 was published May 13, 2022

A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to... Moderate Unreviewed

CVE-2017-2330 was published May 13, 2022

The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9254 was published May 13, 2022

The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9257 was published May 13, 2022

The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9256 was published May 13, 2022

The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9255 was published May 13, 2022

The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed

CVE-2017-9253 was published May 13, 2022

An issue was discovered in Xpdf 4.00. catalog->getNumPages() in AcroForm.cc allows attackers to... Moderate Unreviewed

CVE-2018-18651 was published May 13, 2022

libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the... Moderate Unreviewed

CVE-2018-5252 was published May 13, 2022

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop... High Unreviewed

CVE-2018-9261 was published May 13, 2022

Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows... Moderate Unreviewed

CVE-2023-0411 was published Jan 26, 2023

The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator)... Moderate Unreviewed

CVE-2016-7421 was published May 13, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

83 advisories