GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,656
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
268 advisories
Filter by severity
On BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, and 14.0.0-14.0.0.2, Multi...
Moderate
Unreviewed
CVE-2019-6594
was published
May 13, 2022
In libsixel v1.8.2, there is an infinite loop in the function sixel_decode_raw_impl() in the file...
Moderate
Unreviewed
CVE-2019-3573
was published
May 13, 2022
libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onwards (version v2.8.0...
Moderate
Unreviewed
CVE-2019-1000020
was published
May 13, 2022
Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and...
Moderate
Unreviewed
CVE-2018-6687
was published
May 13, 2022
The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers...
Moderate
Unreviewed
CVE-2017-14741
was published
May 13, 2022
The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators...
Moderate
Unreviewed
CVE-2015-8558
was published
May 13, 2022
libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service ...
Moderate
Unreviewed
CVE-2018-14567
was published
May 13, 2022
hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause...
Moderate
Unreviewed
CVE-2017-8112
was published
May 13, 2022
A flaw was found in the Linux kernel in the function hid_debug_events_read() in drivers/hid/hid...
Moderate
Unreviewed
CVE-2019-3819
was published
May 13, 2022
QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local...
Moderate
Unreviewed
CVE-2017-9375
was published
May 13, 2022
The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c in QEMU (aka Quick Emulator)...
Moderate
Unreviewed
CVE-2017-5987
was published
May 13, 2022
The mcf_fec_do_tx function in hw/net/mcf_fec.c in QEMU (aka Quick Emulator) does not properly...
Moderate
Unreviewed
CVE-2016-7908
was published
May 13, 2022
The pcnet_rdra_addr function in hw/net/pcnet.c in QEMU (aka Quick Emulator) allows local guest OS...
Moderate
Unreviewed
CVE-2016-7909
was published
May 13, 2022
The ohci_service_ed_list function in hw/usb/hcd-ohci.c in QEMU (aka Quick Emulator) before 2.9.0...
Moderate
Unreviewed
CVE-2017-6505
was published
May 13, 2022
QEMU (aka Quick Emulator) built with the ColdFire Fast Ethernet Controller emulator support is...
Moderate
Unreviewed
CVE-2016-9776
was published
May 13, 2022
QEMU (aka Quick Emulator) built with the e1000 NIC emulation support is vulnerable to an infinite...
Moderate
Unreviewed
CVE-2016-1981
was published
May 13, 2022
QEMU (aka Quick Emulator), when built with the e1000e NIC emulation support, allows local guest...
Moderate
Unreviewed
CVE-2017-9310
was published
May 13, 2022
In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload...
Moderate
Unreviewed
CVE-2017-14058
was published
May 13, 2022
The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPack through 5.1.0 allows...
Moderate
Unreviewed
CVE-2018-19840
was published
May 13, 2022
An issue was discovered in cairo 1.16.0. There is an infinite loop in the function...
Moderate
Unreviewed
CVE-2019-6462
was published
May 13, 2022
In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and...
Moderate
Unreviewed
CVE-2018-20467
was published
May 13, 2022
Loop with Unreachable Exit Condition in Apache CXF
Moderate
CVE-2014-3584
was published
for
org.apache.cxf:cxf-rt-frontend-jaxrs
(Maven)
May 13, 2022
In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and application hang in the...
Moderate
Unreviewed
CVE-2018-5650
was published
May 13, 2022
The xhci_kick_epctx function in hw/usb/hcd-xhci.c in QEMU (aka Quick Emulator) allows local guest...
Moderate
Unreviewed
CVE-2017-5973
was published
May 13, 2022
The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local...
Moderate
Unreviewed
CVE-2016-8909
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API