Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

42 advisories

Loading
In Eclipse Mosquito before and including 2.0.5, establishing a connection to the mosquitto server... High Unreviewed
CVE-2023-5632 was published Oct 18, 2023
srs2.c in PostSRSd before 1.10 allows remote attackers to cause a denial of service (CPU... High Unreviewed
CVE-2020-35573 was published May 24, 2022
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of... High Unreviewed
CVE-2019-3559 was published May 24, 2022
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of... High Unreviewed
CVE-2024-0842 was published Feb 9, 2024
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop... High Unreviewed
CVE-2018-9261 was published May 13, 2022
The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9255 was published May 13, 2022
The mp4ff_read_stco function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9256 was published May 13, 2022
The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9253 was published May 13, 2022
The mp4ff_read_stts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9254 was published May 13, 2022
The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in Freeware Advanced Audio Decoder 2 ... High Unreviewed
CVE-2017-9257 was published May 13, 2022
In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause... High Unreviewed
CVE-2017-14057 was published May 13, 2022
In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of... High Unreviewed
CVE-2017-14056 was published May 13, 2022
In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of... High Unreviewed
CVE-2017-14054 was published May 13, 2022
In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and... High Unreviewed
CVE-2017-14059 was published May 13, 2022
In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of... High Unreviewed
CVE-2017-14055 was published May 13, 2022
In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File)... High Unreviewed
CVE-2017-14222 was published May 13, 2022
ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c. High Unreviewed
CVE-2017-12587 was published May 13, 2022
In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was... High Unreviewed
CVE-2017-11409 was published May 13, 2022
The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6... High Unreviewed
CVE-2017-11505 was published May 13, 2022
The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a... High Unreviewed
CVE-2017-11549 was published May 13, 2022
The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability... High Unreviewed
CVE-2017-11188 was published May 13, 2022
A denial of service vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0775 was published May 13, 2022
GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex... High Unreviewed
CVE-2017-13776 was published May 13, 2022
GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex... High Unreviewed
CVE-2017-13777 was published May 13, 2022
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector... High Unreviewed
CVE-2018-14342 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database