GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
201 advisories
Filter by severity
StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a...
High
Unreviewed
CVE-2023-34194
was published
Dec 13, 2023
Denial of Service via reachable assertion
High
CVE-2022-24777
was published
for
github.com/grpc/grpc-swift
(Swift)
Jun 9, 2023
A reachable assertion was found in Frrouting frr-bgpd 8.3.0 in the peek_for_as4_capability...
High
Unreviewed
CVE-2022-36440
was published
Apr 3, 2023
oftpd before 0.3.7 allows remote attackers to cause a denial of service (daemon abort) via a (1)...
High
Unreviewed
CVE-2006-6767
was published
May 1, 2022
A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL...
High
Unreviewed
CVE-2023-2156
was published
May 10, 2023
Transient DOS while processing 11AZ RTT management action frame received through OTA.
High
Unreviewed
CVE-2023-43523
was published
Feb 6, 2024
Improper handling of values in HuginBase::PTools::Transform::transform of Hugin 2022.0.0 leads to...
High
Unreviewed
CVE-2024-25445
was published
Feb 9, 2024
** UNSUPPORTED WHEN ASSIGNED ** Polipo through 1.1.1 allows denial of service via a reachable...
High
Unreviewed
CVE-2020-36420
was published
May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in dname_pkt_copy via an...
High
Unreviewed
CVE-2019-25037
was published
May 24, 2022
Unbound before 1.9.5 allows an assertion failure via a compressed name in dname_pkt_copy.
High
Unreviewed
CVE-2019-25041
was published
May 24, 2022
Unbound before 1.9.5 allows an assertion failure and denial of service in synth_cname.
High
Unreviewed
CVE-2019-25036
was published
May 24, 2022
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT...
High
Unreviewed
CVE-2011-3596
was published
Apr 22, 2022
In BIND Supported Preview Edition, an error in the nxdomain-redirect feature can occur in...
High
Unreviewed
CVE-2019-6468
was published
May 24, 2022
An error in the EDNS Client Subnet (ECS) feature for recursive resolvers can cause BIND to exit...
High
Unreviewed
CVE-2019-6469
was published
May 24, 2022
A defect in code added to support QNAME minimization can cause named to exit with an assertion...
High
Unreviewed
CVE-2019-6476
was published
May 24, 2022
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858;...
High
Unreviewed
CVE-2018-5735
was published
May 24, 2022
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
High
Unreviewed
CVE-2022-34144
was published
May 2, 2023
Transient DOS due to reachable assertion in Modem while processing config related to cross...
High
Unreviewed
CVE-2022-40508
was published
May 2, 2023
There is a vulnerability in the fizz library prior to v2023.01.30.00 where a CHECK failure can be...
High
Unreviewed
CVE-2023-23759
was published
May 19, 2023
Assertion occurs while processing Reconfiguration message due to improper validation
High
Unreviewed
CVE-2022-22060
was published
Jun 6, 2023
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
High
Unreviewed
CVE-2022-33251
was published
Jun 6, 2023
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from...
High
Unreviewed
CVE-2022-40538
was published
Jun 6, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
High
Unreviewed
CVE-2023-34868
was published
Jun 14, 2023
Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the...
High
Unreviewed
CVE-2023-34867
was published
Jun 14, 2023
Transient DOS in Modem while processing RRC reconfiguration message.
High
Unreviewed
CVE-2023-21653
was published
Sep 5, 2023
ProTip!
Advisories are also available from the
GraphQL API