GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
110 advisories
Filter by severity
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function...
Critical
Unreviewed
CVE-2017-14625
was published
May 13, 2022
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL...
Critical
Unreviewed
CVE-2017-3169
was published
May 13, 2022
In Apache Xerces-C XML Parser library before 3.2.1, processing of external DTD paths can result...
Critical
Unreviewed
CVE-2017-12627
was published
May 13, 2022
The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.c in the Linux kernel before 4...
Critical
Unreviewed
CVE-2015-8787
was published
May 13, 2022
liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles...
Critical
Unreviewed
CVE-2022-30592
was published
May 12, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body...
Critical
Unreviewed
CVE-2021-1946
was published
May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5...
Critical
Unreviewed
CVE-2021-28300
was published
May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to...
Critical
Unreviewed
CVE-2020-11168
was published
May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in...
Critical
Unreviewed
CVE-2019-8572
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8205
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8006
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8017
was published
May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20035 and earlier, 2019.012.20035 and earlier, 2017...
Critical
Unreviewed
CVE-2019-8045
was published
May 24, 2022
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference...
Critical
Unreviewed
CVE-2019-10993
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7076
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7046
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7051
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7054
was published
May 24, 2022
Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2019.010.20069 and earlier, 2017...
Critical
Unreviewed
CVE-2019-7066
was published
May 24, 2022
libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and...
Critical
Unreviewed
CVE-2016-3821
was published
May 17, 2022
The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7...
Critical
Unreviewed
CVE-2016-5690
was published
May 17, 2022
XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer...
Critical
Unreviewed
CVE-2014-8241
was published
May 17, 2022
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to...
Critical
Unreviewed
CVE-2016-5689
was published
May 17, 2022
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm MDSS driver in Android before 2016-10-05...
Critical
Unreviewed
CVE-2016-6692
was published
May 17, 2022
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer...
Critical
Unreviewed
CVE-2017-5668
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API