Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

110 advisories

Loading
NULL Pointer Dereference in cbox Critical
CVE-2020-35860 was published for cbox (Rust) Aug 25, 2021
Incomplete validation in boosted trees code Critical
CVE-2021-41208 was published for tensorflow (pip) Nov 10, 2021
NULL Pointer Dereference and Access of Uninitialized Pointer in TensorFlow Critical
GHSA-h6gw-r52c-724r was published for tensorflow (pip) Feb 9, 2022
Lack of null check while freeing the device information buffer in the Bluetooth HFP protocol can... Critical Unreviewed
CVE-2021-35068 was published Feb 12, 2022
Null pointer dereference vulnerability in parser_hvcC function of libsimba library prior to SMR... Critical Unreviewed
CVE-2022-27567 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR... Critical Unreviewed
CVE-2022-26099 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_irot function in libsimba library prior to SMR... Critical Unreviewed
CVE-2022-26093 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_auxC function in libsimba library prior to SMR... Critical Unreviewed
CVE-2022-26094 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_unknown_property function in libsimba library... Critical Unreviewed
CVE-2022-26097 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_ispe function in libsimba library prior to SMR... Critical Unreviewed
CVE-2022-26096 was published Apr 12, 2022
Null pointer dereference vulnerability in parser_colr function in libsimba library prior to SMR... Critical Unreviewed
CVE-2022-26095 was published Apr 12, 2022
liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles... Critical Unreviewed
CVE-2022-30592 was published May 12, 2022
The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.c in the Linux kernel before 4... Critical Unreviewed
CVE-2015-8787 was published May 13, 2022
In Apache Xerces-C XML Parser library before 3.2.1, processing of external DTD paths can result... Critical Unreviewed
CVE-2017-12627 was published May 13, 2022
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL... Critical Unreviewed
CVE-2017-3169 was published May 13, 2022
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function... Critical Unreviewed
CVE-2017-18211 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function... Critical Unreviewed
CVE-2017-14625 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function... Critical Unreviewed
CVE-2017-14624 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode... Critical Unreviewed
CVE-2017-14626 was published May 13, 2022
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c. Critical Unreviewed
CVE-2017-14532 was published May 13, 2022
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header... Critical Unreviewed
CVE-2018-16657 was published May 13, 2022
drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the Linux kernel 3.x, as used in... Critical Unreviewed
CVE-2015-0573 was published May 13, 2022
zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in... Critical Unreviewed
CVE-2018-1000800 was published May 13, 2022
NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows... Critical Unreviewed
CVE-2016-6604 was published May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c. Critical Unreviewed
CVE-2017-11124 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database