GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
427 advisories
Filter by severity
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of...
Moderate
Unreviewed
CVE-2021-1440
was published
Nov 18, 2024
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen...
High
Unreviewed
CVE-2024-23385
was published
Nov 4, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via...
High
Unreviewed
CVE-2024-10455
was published
Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to...
Moderate
Unreviewed
CVE-2024-50615
was published
Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application...
Moderate
Unreviewed
CVE-2024-50614
was published
Oct 28, 2024
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in...
Moderate
Unreviewed
CVE-2024-50613
was published
Oct 28, 2024
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't readahead the...
Moderate
Unreviewed
CVE-2024-49932
was published
Oct 21, 2024
wasmtime has a runtime crash when combining tail calls with trapping imports
Moderate
CVE-2024-47763
was published
for
wasmtime
(Rust)
Oct 9, 2024
In Modem, there is a possible system crash due to a missing bounds check. This could lead to...
High
Unreviewed
CVE-2024-20094
was published
Oct 7, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net...
Moderate
Unreviewed
CVE-2024-8354
was published
Sep 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
mm: page_ref: remove...
Moderate
Unreviewed
CVE-2024-42251
was published
Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved:
closures: Change BUG_ON() to...
Moderate
Unreviewed
CVE-2024-42252
was published
Aug 8, 2024
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR...
Moderate
Unreviewed
CVE-2024-23350
was published
Aug 5, 2024
Client queries that trigger serving stale data and that also require lookups in local...
High
Unreviewed
CVE-2024-4076
was published
Jul 23, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc...
Moderate
Unreviewed
CVE-2024-3374
was published
May 14, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure
The Name Service Cache...
High
Unreviewed
CVE-2024-33601
was published
May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment...
High
Unreviewed
CVE-2023-43529
was published
May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS...
High
Unreviewed
CVE-2024-34475
was published
May 5, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via...
Moderate
Unreviewed
CVE-2024-33255
was published
Apr 26, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an...
High
Unreviewed
CVE-2024-31744
was published
Apr 19, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function...
Moderate
Unreviewed
CVE-2024-3567
was published
Apr 10, 2024
Transient DOS while processing multiple payload container type with incorrect container length...
High
Unreviewed
CVE-2023-33095
was published
Mar 4, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.
High
Unreviewed
CVE-2023-33096
was published
Mar 4, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure...
High
Unreviewed
CVE-2023-5517
was published
Feb 13, 2024
ProTip!
Advisories are also available from the
GraphQL API