Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

432 advisories

Loading
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label()... Moderate Unreviewed
CVE-2023-38470 was published Nov 2, 2023
A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks... High Unreviewed
CVE-2023-44175 was published Oct 13, 2023
Transient DOS in Modem while triggering a camping on an 5G cell. High Unreviewed
CVE-2023-24843 was published Oct 3, 2023
In wlan firmware, there is a possible firmware assertion due to improper input handling. This... High Unreviewed
CVE-2023-32820 was published Oct 2, 2023
A flaw in the networking code handling DNS-over-TLS queries may cause `named` to terminate... High Unreviewed
CVE-2023-4236 was published Sep 20, 2023
Transient DOS in Modem while processing RRC reconfiguration message. High Unreviewed
CVE-2023-21653 was published Sep 5, 2023
Transient DOS in Modem while processing invalid System Information Block 1. High Unreviewed
CVE-2023-21646 was published Sep 5, 2023
An issue was discovered in Binutils readelf 2.38.50, reachable assertion failure in function... Moderate Unreviewed
CVE-2022-35205 was published Aug 22, 2023
Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2021-46179 was published Aug 22, 2023
A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of... Moderate Unreviewed
CVE-2022-37052 was published Aug 22, 2023
An issue was discovered in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead... Moderate Unreviewed
CVE-2022-38349 was published Aug 22, 2023
An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of... Moderate Unreviewed
CVE-2022-37051 was published Aug 22, 2023
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server by... Moderate Unreviewed
CVE-2021-31294 was published Jul 16, 2023
A Reachable Assertion vulnerability in Routing Protocol Daemon (RPD) of Juniper Networks Junos OS... Moderate Unreviewed
CVE-2023-36840 was published Jul 14, 2023
libjpeg commit db33a6e was discovered to contain a reachable assertion via BitMapHook::BitMapHook... Moderate Unreviewed
CVE-2023-37836 was published Jul 14, 2023
gRPC Reachable Assertion issue High
CVE-2023-1428 was published for grpc (RubyGems) Jul 6, 2023
jonasfj
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34868 was published Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the... High Unreviewed
CVE-2023-34867 was published Jun 14, 2023
Denial of Service via reachable assertion High
CVE-2022-24777 was published for github.com/grpc/grpc-swift (Swift) Jun 9, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from... High Unreviewed
CVE-2022-40538 was published Jun 6, 2023
Assertion occurs while processing Reconfiguration message due to improper validation High Unreviewed
CVE-2022-22060 was published Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration. High Unreviewed
CVE-2022-33251 was published Jun 6, 2023
xml-rs vulnerable to denial of service via invalid token in XML document High
CVE-2023-34411 was published for xml-rs (Rust) Jun 5, 2023
00xc
malformed proposed intoto entries can cause a panic Moderate
CVE-2023-33199 was published for github.com/sigstore/rekor (Go) May 26, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be... High Unreviewed
CVE-2023-23759 was published May 19, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database