GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,174

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

237 advisories

Filter by severity

Sort by

Least recently updated

DSM in libopenmpt before 0.4.2 allows an assertion failure during file parsing with debug STLs. Moderate Unreviewed

CVE-2019-14382 was published May 24, 2022

A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an... Moderate Unreviewed

CVE-2019-13223 was published May 24, 2022

A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit... Moderate Unreviewed

CVE-2019-6472 was published May 24, 2022

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea... Moderate Unreviewed

CVE-2019-6473 was published May 24, 2022

The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci... Moderate Unreviewed

CVE-2019-18844 was published May 24, 2022

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3... Moderate Unreviewed

CVE-2020-11653 was published May 24, 2022

Using a specially-crafted message, an attacker may potentially cause a BIND server to reach an... Moderate Unreviewed

CVE-2020-8617 was published May 24, 2022

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions... Moderate Unreviewed

CVE-2020-10761 was published May 24, 2022

An attacker who is permitted to send zone data to a server via zone transfer can exploit this to... Moderate Unreviewed

CVE-2020-8618 was published May 24, 2022

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This... Moderate Unreviewed

CVE-2020-16092 was published May 24, 2022

In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.11.21-S1... Moderate Unreviewed

CVE-2020-8622 was published May 24, 2022

In BIND 9.15.6 -> 9.16.5, 9.17.0 -> 9.17.3, An attacker who can establish a TCP connection with... Moderate Unreviewed

CVE-2020-8620 was published May 24, 2022

In BIND 9.14.0 -> 9.16.5, 9.17.0 -> 9.17.3, If a server is configured with both QNAME... Moderate Unreviewed

CVE-2020-8621 was published May 24, 2022

In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21... Moderate Unreviewed

CVE-2020-8623 was published May 24, 2022

An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp... Moderate Unreviewed

CVE-2020-6097 was published May 24, 2022

Receipt of a specifically malformed NDP packet sent from the local area network (LAN) to a device... Moderate Unreviewed

CVE-2020-1681 was published May 24, 2022

eth_get_gso_type in net/eth.c in QEMU 4.2.1 allows guest OS users to trigger an assertion failure... Moderate Unreviewed

CVE-2020-27617 was published May 24, 2022

A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur... Moderate Unreviewed

CVE-2020-25723 was published May 24, 2022

Context-specific code was included in a shared jump table; resulting in assertions being... Moderate Unreviewed

CVE-2021-23970 was published May 24, 2022

A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may... Moderate Unreviewed

CVE-2021-20286 was published May 24, 2022

A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence... Moderate Unreviewed

CVE-2019-14851 was published May 24, 2022

In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11... Moderate Unreviewed

CVE-2021-25214 was published May 24, 2022

Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed

CVE-2020-20265 was published May 24, 2022

Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the... Moderate Unreviewed

CVE-2020-20214 was published May 24, 2022

A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a... Moderate Unreviewed

CVE-2021-3531 was published May 24, 2022

Previous 1 2 3 4 5 6 7 8 9 10 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

237 advisories