Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,759
NuGet
678
pip
3,445
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

443 advisories

Loading
A reachable assertion issue was found in the USB EHCI emulation code of QEMU. It could occur... Moderate Unreviewed
CVE-2020-25723 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4... High Unreviewed
CVE-2020-29562 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading to an assertion failure in slapd in the... High Unreviewed
CVE-2020-36222 was published May 24, 2022
A flaw was discovered in OpenLDAP before 2.4.57 leading in an assertion failure in slapd in the X... High Unreviewed
CVE-2020-36230 was published May 24, 2022
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing... High Unreviewed
CVE-2021-3326 was published May 24, 2022
In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur... High Unreviewed
CVE-2021-27212 was published May 24, 2022
Possible denial of service while handling host WMI command due to improper validation in... High Unreviewed
CVE-2020-11278 was published May 24, 2022
Denial of service while processing fine timing measurement request (FTMR) frame with reserved... High Unreviewed
CVE-2020-11280 was published May 24, 2022
Arithmetic overflow can happen while processing NOA IE due to improper error handling in... High Unreviewed
CVE-2020-11296 was published May 24, 2022
Context-specific code was included in a shared jump table; resulting in assertions being... Moderate Unreviewed
CVE-2021-23970 was published May 24, 2022
A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted... High Unreviewed
CVE-2021-20272 was published May 24, 2022
A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may... Moderate Unreviewed
CVE-2021-20286 was published May 24, 2022
A packet of death scenario is possible in mvfst via a specially crafted message during a QUIC... High Unreviewed
CVE-2021-24029 was published May 24, 2022
Denial of service in baseband when NW configures LTE betaOffset-RI-Index due to lack of data... High Unreviewed
CVE-2020-11218 was published May 24, 2022
A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence... Moderate Unreviewed
CVE-2019-14851 was published May 24, 2022
A flaw was found in Privoxy in versions before 3.0.31. An assertion failure triggered by a... High Unreviewed
CVE-2021-20217 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy. High Unreviewed
CVE-2019-25041 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an... High Unreviewed
CVE-2019-25037 was published May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname. High Unreviewed
CVE-2019-25036 was published May 24, 2022
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11... Moderate Unreviewed
CVE-2021-25214 was published May 24, 2022
In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8... Critical Unreviewed
CVE-2021-25216 was published May 24, 2022
In BIND 9.0.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8... High Unreviewed
CVE-2021-25215 was published May 24, 2022
Possible denial of service scenario due to improper handling of group management action frame in... High Unreviewed
CVE-2021-1925 was published May 24, 2022
Histogram type KPI was teardown with the assumption of the existence of histogram binning info... High Unreviewed
CVE-2020-11273 was published May 24, 2022
Denial of service in MODEM due to assert to the invalid configuration in Snapdragon Auto,... High Unreviewed
CVE-2020-11274 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database