GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,339
Composer 4,133
Erlang 29
GitHub Actions 19
Go 1,940
Maven 5,135
npm 3,677
NuGet 645
pip 3,295
Pub 11
RubyGems 877
Rust 830
Swift 35

Unreviewed advisories

All unreviewed 230,907

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

345 advisories

Filter by severity

Sort by

Least recently updated

tcpprep v4.4.1 has a reachable assertion (assert(l2len > 0)) in packet2tree() at tree.c in... Moderate Unreviewed

CVE-2022-25484 was published Mar 23, 2022

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0 High Unreviewed

CVE-2022-0667 was published Mar 23, 2022

Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific... High Unreviewed

CVE-2022-0635 was published Mar 24, 2022

stb_image.h (aka the stb image loader) 2.19, as used in libsixel and other products, has a... Moderate Unreviewed

CVE-2022-27938 was published Mar 27, 2022

Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in... High Unreviewed

CVE-2021-30328 was published Apr 2, 2022

Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon... High Unreviewed

CVE-2021-30332 was published Apr 2, 2022

Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon... High Unreviewed

CVE-2021-30329 was published Apr 2, 2022

MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed

CVE-2022-27382 was published Apr 13, 2022

There is an Assertion failure in MariaDB Server v10.9 and below via 'node->pcur->rel_pos ==... High Unreviewed

CVE-2022-27448 was published Apr 15, 2022

An authenticated user may trigger an invariant assertion during command dispatch due to incorrect... Moderate Unreviewed

CVE-2022-24272 was published Apr 22, 2022

A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of... High Unreviewed

CVE-2022-20694 was published Apr 16, 2022

Receipt of a specifically malformed NDP packet sent from the local area network (LAN) to a device... Moderate Unreviewed

CVE-2020-1681 was published May 24, 2022

On vulnerable configurations, the named daemon may, in some circumstances, terminate with an... High Unreviewed

CVE-2022-1183 was published May 20, 2022

An issue was discovered in Varnish Cache before 6.0.4 LTS, and 6.1.x and 6.2.x before 6.2.1. An... High Unreviewed

CVE-2019-15892 was published May 24, 2022

In QEMU through 5.0.0, an assertion failure can occur in the network packet processing. This... Moderate Unreviewed

CVE-2020-16092 was published May 24, 2022

Histogram type KPI was teardown with the assumption of the existence of histogram binning info... High Unreviewed

CVE-2020-11273 was published May 24, 2022

Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed

CVE-2020-20265 was published May 24, 2022

There is an assertion failure in SingleComponentLSScan::ParseMCU in singlecomponentlsscan.cpp in... Moderate Unreviewed

CVE-2022-32978 was published Jun 11, 2022

Improper handling of writes to virtual GICR control can lead to assertion failure in the... Moderate Unreviewed

CVE-2021-35101 was published Jun 15, 2022

Ethereum Solidity v0.8.14 contains an assertion failure via SMTEncoder::indexOrMemberAssignment()... Moderate Unreviewed

CVE-2022-33069 was published Jun 24, 2022

Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in... High Unreviewed

CVE-2021-30340 was published Jun 15, 2022

Possible assertion due to improper validation of rank restriction field in Snapdragon Auto,... High Unreviewed

CVE-2021-35073 was published Jun 15, 2022

There is an Assertion `int decode_preR13_entities(BITCODE_RL, BITCODE_RL, unsigned int,... High Unreviewed

CVE-2022-33024 was published Jun 24, 2022

There is a reachable assertion in the Internal::TiffReader::visitDirectory function in... Moderate Unreviewed

CVE-2017-11683 was published May 13, 2022

An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions... Moderate Unreviewed

CVE-2020-10761 was published May 24, 2022

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

345 advisories