Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

111 advisories

Loading
In all Qualcomm products with Android releases from CAF using the Linux kernel, an untrusted... Critical Unreviewed
CVE-2015-9073 was published May 17, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, an untrusted... Critical Unreviewed
CVE-2015-9072 was published May 17, 2022
libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in... Critical Unreviewed
CVE-2017-9051 was published May 17, 2022
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer... Critical Unreviewed
CVE-2017-5668 was published May 17, 2022
XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer... Critical Unreviewed
CVE-2014-8241 was published May 17, 2022
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to... Critical Unreviewed
CVE-2016-5689 was published May 17, 2022
The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7... Critical Unreviewed
CVE-2016-5690 was published May 17, 2022
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm MDSS driver in Android before 2016-10-05... Critical Unreviewed
CVE-2016-6692 was published May 17, 2022
libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and... Critical Unreviewed
CVE-2016-3821 was published May 17, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7046 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7054 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7051 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7066 was published May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017... Critical Unreviewed
CVE-2019-7076 was published May 24, 2022
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference... Critical Unreviewed
CVE-2019-10993 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8006 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8017 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017... Critical Unreviewed
CVE-2019-8045 was published May 24, 2022
Symonics libmysofa 0.7 has a NULL pointer dereference in getHrtf in hrtf/reader.c. Critical Unreviewed
CVE-2019-16092 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8205 was published May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in... Critical Unreviewed
CVE-2019-8572 was published May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to... Critical Unreviewed
CVE-2020-11168 was published May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5... Critical Unreviewed
CVE-2021-28300 was published May 24, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body... Critical Unreviewed
CVE-2021-1946 was published May 24, 2022
In libarchive 3.6.1, the software does not check for an error after calling calloc function that... Critical Unreviewed
CVE-2022-36227 was published Nov 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database