Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,737
Maven
5,000+
npm
4,337
NuGet
764
pip
4,112
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,866 advisories

Loading
There is a NULL pointer dereference at liblas::SpatialReference::GetGTIF() (spatialreference.cpp)... Moderate Unreviewed
CVE-2018-20537 was published May 13, 2022
The WebSockets implementation in Google Chrome before 14.0.835.163 allows remote attackers to... Moderate Unreviewed
CVE-2011-2849 was published May 13, 2022
The join_pthread function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to... Moderate Unreviewed
CVE-2017-8843 was published May 13, 2022
The bufRead::get() function in libzpaq/libzpaq.h in liblrzip.so in lrzip 0.631 allows remote... Moderate Unreviewed
CVE-2017-8847 was published May 13, 2022
The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets ... Moderate Unreviewed
CVE-2011-1691 was published May 13, 2022
A NULL pointer dereference was discovered in wasm::SExpressionWasmBuilder::parseExpression in... Moderate Unreviewed
CVE-2019-7702 was published May 13, 2022
A NULL pointer dereference was discovered in wasm::WasmBinaryBuilder::processFunctions() in wasm... Moderate Unreviewed
CVE-2019-7153 was published May 13, 2022
A NULL pointer dereference was discovered in wasm::Module::getFunctionOrNull in wasm/wasm.cpp in... Moderate Unreviewed
CVE-2019-7151 was published May 13, 2022
A NULL pointer dereference was discovered in sbr_process_channel of libfaad/sbr_dec.c in Freeware... Moderate Unreviewed
CVE-2018-20357 was published May 13, 2022
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware... Moderate Unreviewed
CVE-2018-20198 was published May 13, 2022
A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware... Moderate Unreviewed
CVE-2018-20195 was published May 13, 2022
A NULL pointer dereference was discovered in ifilter_bank of libfaad/filtbank.c in Freeware... Moderate Unreviewed
CVE-2018-20362 was published May 13, 2022
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows... Moderate Unreviewed
CVE-2018-20481 was published May 13, 2022
The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2... Moderate Unreviewed
CVE-2012-1146 was published May 13, 2022
The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to... Moderate Unreviewed
CVE-2011-3637 was published May 13, 2022
browser/worker_host/message_port_dispatcher.cc in Google Chrome before 8.0.552.224 and Chrome OS... Moderate Unreviewed
CVE-2010-4576 was published May 13, 2022
crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of... Moderate Unreviewed
CVE-2011-4081 was published May 13, 2022
The __sys_sendmsg function in net/socket.c in the Linux kernel before 3.1 allows local users to... Moderate Unreviewed
CVE-2011-4594 was published May 13, 2022
The WebSockets implementation in Google Chrome before 6.0.472.53 allows remote attackers to cause... Moderate Unreviewed
CVE-2010-3251 was published May 13, 2022
The bcm_release function in net/can/bcm.c in the Linux kernel before 2.6.39-rc6 does not properly... Moderate Unreviewed
CVE-2011-1598 was published May 13, 2022
The raw_release function in net/can/raw.c in the Linux kernel before 2.6.39-rc6 does not properly... Moderate Unreviewed
CVE-2011-1748 was published May 13, 2022
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not... Moderate Unreviewed
CVE-2011-2928 was published May 13, 2022
The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation... Moderate Unreviewed
CVE-2011-1478 was published May 13, 2022
net/dns_resolver/dns_key.c in the Linux kernel before 2.6.38 allows remote DNS servers to cause a... Moderate Unreviewed
CVE-2011-1076 was published May 13, 2022
The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x... Moderate Unreviewed
CVE-2011-2691 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database