Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

455 advisories

Loading
An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow... Moderate Unreviewed
CVE-2021-30501 was published May 24, 2022
In function lys_node_free() in libyang <= v1.0.225, it asserts that the value of node->module can... High Unreviewed
CVE-2021-28905 was published May 24, 2022
A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a... Moderate Unreviewed
CVE-2021-3531 was published May 24, 2022
Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the... Moderate Unreviewed
CVE-2020-20214 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20265 was published May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info... High Unreviewed
CVE-2020-11273 was published May 24, 2022
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto,... High Unreviewed
CVE-2020-11274 was published May 24, 2022
Possible denial of service scenario due to improper handling of group management action frame in... High Unreviewed
CVE-2021-1925 was published May 24, 2022
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8... High Unreviewed
CVE-2021-25215 was published May 24, 2022
In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8... Critical Unreviewed
CVE-2021-25216 was published May 24, 2022
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11... Moderate Unreviewed
CVE-2021-25214 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. High Unreviewed
CVE-2019-25036 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an... High Unreviewed
CVE-2019-25037 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. High Unreviewed
CVE-2019-25041 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a... High Unreviewed
CVE-2021-20217 was published May 24, 2022
A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence... Moderate Unreviewed
CVE-2019-14851 was published May 24, 2022
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data... High Unreviewed
CVE-2020-11218 was published May 24, 2022
A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC... High Unreviewed
CVE-2021-24029 was published May 24, 2022
A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may... Moderate Unreviewed
CVE-2021-20286 was published May 24, 2022
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted... High Unreviewed
CVE-2021-20272 was published May 24, 2022
Context-specific code was included in a shared jump table; resulting in assertions being... Moderate Unreviewed
CVE-2021-23970 was published May 24, 2022
Arithmetic overflow can happen while processing NOA IE due to improper error handling in... High Unreviewed
CVE-2020-11296 was published May 24, 2022
Denial of service while processing fine timing measurement request (FTMR) frame with reserved... High Unreviewed
CVE-2020-11280 was published May 24, 2022
Possible denial of service while handling host WMI command due to improper validation in... High Unreviewed
CVE-2020-11278 was published May 24, 2022
In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur... High Unreviewed
CVE-2021-27212 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database