GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,954
Composer 4,783
Erlang 36
GitHub Actions 29
Go 2,348
Maven 5,667
npm 3,976
NuGet 720
pip 3,774
Pub 12
RubyGems 923
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,294

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

69 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders... High Unreviewed

CVE-2017-17914 was published May 13, 2022

In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an... High Unreviewed

CVE-2017-14174 was published May 13, 2022

In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of... High Unreviewed

CVE-2017-14172 was published May 13, 2022

In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of... High Unreviewed

CVE-2017-14175 was published May 13, 2022

GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex... High Unreviewed

CVE-2017-13777 was published May 13, 2022

GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex... High Unreviewed

CVE-2017-13776 was published May 13, 2022

ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c. High Unreviewed

CVE-2017-12587 was published May 13, 2022

In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in... High Unreviewed

CVE-2017-12674 was published May 13, 2022

In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was... High Unreviewed

CVE-2017-11409 was published May 13, 2022

In Genivia gSOAP with a specific configuration an unauthenticated remote attacker can generate a... High Unreviewed

CVE-2024-4227 was published Jan 15, 2025

In Progress Telerik Document Processing Libraries, versions prior to 2024 Q4 (2024.4.1106),... Moderate Unreviewed

CVE-2024-8049 was published Nov 13, 2024

Issue summary: Checking excessively long DSA keys or parameters may be very slow. Impact summary... Moderate Unreviewed

CVE-2024-4603 was published May 16, 2024

Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary:... Moderate Unreviewed

CVE-2023-3817 was published Jul 31, 2023

In the Linux kernel, the following vulnerability has been resolved: bpf: Add schedule points in... Low Unreviewed

CVE-2022-48939 was published Aug 22, 2024

In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Validate... Moderate Unreviewed

CVE-2024-42237 was published Aug 7, 2024

In the Linux kernel, the following vulnerability has been resolved: ionic: use... Moderate Unreviewed

CVE-2024-42071 was published Jul 29, 2024

In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server... High Unreviewed

CVE-2023-5632 was published Oct 18, 2023

An issue was discovered in function get_gnu_verneed in rizinorg Rizin prior to 0.5.0... Moderate Unreviewed

CVE-2023-30226 was published Jul 12, 2023

LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of... Moderate Unreviewed

CVE-2023-1993 was published Apr 12, 2023

srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU... High Unreviewed

CVE-2020-35573 was published May 24, 2022

Java Facebook Thrift servers would not error upon receiving messages with containers of fields of... High Unreviewed

CVE-2019-3559 was published May 24, 2022

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of... High Unreviewed

CVE-2024-0842 was published Feb 9, 2024

A user authorized to perform database queries may trigger denial of service by issuing specially... Moderate Unreviewed

CVE-2018-20805 was published May 24, 2022

The pvscsi_ring_pop_req_descr function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator)... Moderate Unreviewed

CVE-2016-7421 was published May 13, 2022

Excessive loops in multiple dissectors in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows... Moderate Unreviewed

CVE-2023-0411 was published Jan 26, 2023

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

69 advisories