Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,705
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

426 advisories

Loading
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen... High Unreviewed
CVE-2024-23385 was published Nov 4, 2024
Reachable Assertion in BPv7 parser in µD3TN v0.14.0 allows attacker to disrupt service via... High Unreviewed
CVE-2024-10455 was published Oct 28, 2024
libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in... Moderate Unreviewed
CVE-2024-50613 was published Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/digit, that may lead to... Moderate Unreviewed
CVE-2024-50615 was published Oct 28, 2024
TinyXML2 through 10.0.0 has a reachable assertion for UINT_MAX/16, that may lead to application... Moderate Unreviewed
CVE-2024-50614 was published Oct 28, 2024
In the Linux kernel, the following vulnerability has been resolved: btrfs: don't readahead the... Moderate Unreviewed
CVE-2024-49932 was published Oct 21, 2024
wasmtime has a runtime crash when combining tail calls with trapping imports Moderate
CVE-2024-47763 was published for wasmtime (Rust) Oct 9, 2024
alexcrichton fitzgen
In Modem, there is a possible system crash due to a missing bounds check. This could lead to... High Unreviewed
CVE-2024-20094 was published Oct 7, 2024
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net... Moderate Unreviewed
CVE-2024-8354 was published Sep 19, 2024
vLLM denial of service vulnerability High
CVE-2024-8768 was published for vllm (pip) Sep 17, 2024
In the Linux kernel, the following vulnerability has been resolved: mm: page_ref: remove... Moderate Unreviewed
CVE-2024-42251 was published Aug 8, 2024
In the Linux kernel, the following vulnerability has been resolved: closures: Change BUG_ON() to... Moderate Unreviewed
CVE-2024-42252 was published Aug 8, 2024
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR... Moderate Unreviewed
CVE-2024-23350 was published Aug 5, 2024
Client queries that trigger serving stale data and that also require lookups in local... High Unreviewed
CVE-2024-4076 was published Jul 23, 2024
An unauthenticated user can trigger a fatal assertion in the server while generating ftdc... Moderate Unreviewed
CVE-2024-3374 was published May 14, 2024
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache... High Unreviewed
CVE-2024-33601 was published May 6, 2024
Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment... High Unreviewed
CVE-2023-43529 was published May 6, 2024
Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS... High Unreviewed
CVE-2024-34475 was published May 5, 2024
Jerryscript commit cefd391 was discovered to contain an Assertion Failure via... Moderate Unreviewed
CVE-2024-33255 was published Apr 26, 2024
In Jasper 4.2.2, the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an... High Unreviewed
CVE-2024-31744 was published Apr 19, 2024
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function... Moderate Unreviewed
CVE-2024-3567 was published Apr 10, 2024
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. High Unreviewed
CVE-2023-33096 was published Mar 4, 2024
Transient DOS while processing multiple payload container type with incorrect container length... High Unreviewed
CVE-2023-33095 was published Mar 4, 2024
A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure... High Unreviewed
CVE-2023-5517 was published Feb 13, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to... High Unreviewed
CVE-2024-25445 was published Feb 9, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database