GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
110 advisories
Filter by severity
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,...
Critical
Unreviewed
CVE-2015-9145
was published
May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and...
Critical
Unreviewed
CVE-2015-9127
was published
May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon...
Critical
Unreviewed
CVE-2018-3592
was published
May 14, 2022
An issue was discovered in libthulac.so in THULAC through 2018-02-25. A NULL pointer dereference...
Critical
Unreviewed
CVE-2018-14562
was published
May 14, 2022
GraphicsMagick 1.3.26 has a NULL pointer dereference in the WritePCLImage() function in coders...
Critical
Unreviewed
CVE-2017-11637
was published
May 14, 2022
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty...
Critical
Unreviewed
CVE-2018-16329
was published
May 14, 2022
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging...
Critical
Unreviewed
CVE-2018-16328
was published
May 14, 2022
In subst.c in zsh through 5.4.2, there is a NULL pointer dereference when using ${(PA)...} on an...
Critical
Unreviewed
CVE-2018-7548
was published
May 14, 2022
When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a...
Critical
Unreviewed
CVE-2018-5206
was published
May 14, 2022
In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer...
Critical
Unreviewed
CVE-2018-16428
was published
May 14, 2022
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...
Critical
Unreviewed
CVE-2018-4987
was published
May 14, 2022
Fuji Electric V-Server 4.0.3.0 and prior, Multiple untrusted pointer dereference vulnerabilities...
Critical
Unreviewed
CVE-2018-14811
was published
May 13, 2022
LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability,...
Critical
Unreviewed
CVE-2018-17893
was published
May 13, 2022
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior,...
Critical
Unreviewed
CVE-2018-7497
was published
May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_get_path function in util.c.
Critical
Unreviewed
CVE-2017-11125
was published
May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c.
Critical
Unreviewed
CVE-2017-11124
was published
May 13, 2022
NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows...
Critical
Unreviewed
CVE-2016-6604
was published
May 13, 2022
zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in...
Critical
Unreviewed
CVE-2018-1000800
was published
May 13, 2022
drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the Linux kernel 3.x, as used in...
Critical
Unreviewed
CVE-2015-0573
was published
May 13, 2022
Incomplete validation in boosted trees code
Critical
CVE-2021-41208
was published
for
tensorflow
(pip)
Nov 10, 2021
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header...
Critical
Unreviewed
CVE-2018-16657
was published
May 13, 2022
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function...
Critical
Unreviewed
CVE-2017-18211
was published
May 13, 2022
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
Critical
Unreviewed
CVE-2017-14532
was published
May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function...
Critical
Unreviewed
CVE-2017-14624
was published
May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode...
Critical
Unreviewed
CVE-2017-14626
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API