Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

639 advisories

Loading
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop... Moderate Unreviewed
CVE-2023-3576 was published Oct 4, 2023
A flaw was found in JSS. A memory leak in JSS requires non-standard configuration but is a low... Moderate Unreviewed
CVE-2022-4132 was published Oct 4, 2023
In Mosquitto before 2.0.16, a memory leak occurs when clients send v5 CONNECT packets with a will... High Unreviewed
CVE-2023-3592 was published Oct 2, 2023
A vulnerability in the memory buffer of Cisco Wireless LAN Controller (WLC) AireOS Software could... Moderate Unreviewed
CVE-2023-20251 was published Sep 27, 2023
In canvas rendering, a compromised content process could have caused a surface to change... High Unreviewed
CVE-2023-5170 was published Sep 27, 2023
A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential... High Unreviewed
CVE-2023-5156 was published Sep 25, 2023
An issue in cimg.eu Cimg Library v2.9.3 allows an attacker to obtain sensitive information via a... High Unreviewed
CVE-2023-41484 was published Sep 20, 2023
The broker in Eclipse Mosquitto 1.3.2 through 2.x before 2.0.16 has a memory leak that can be... High Unreviewed
CVE-2023-28366 was published Sep 1, 2023
A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the... Moderate Unreviewed
CVE-2023-4569 was published Aug 29, 2023
BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of... High Unreviewed
CVE-2023-4513 was published Aug 24, 2023
A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial... High Unreviewed
CVE-2022-48541 was published Aug 22, 2023
GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function... Moderate Unreviewed
CVE-2022-48065 was published Aug 22, 2023
An issue was discovered function parse_stab_struct_fields in stabs.c in Binutils 2.34 thru 2.38,... Moderate Unreviewed
CVE-2022-47011 was published Aug 22, 2023
An issue was discovered function make_tempdir, and make_tempname in bucomm.c in Binutils 2.34... Moderate Unreviewed
CVE-2022-47008 was published Aug 22, 2023
An issue was discovered function stab_demangle_v3_arg in stabs.c in Binutils 2.34 thru 2.38,... Moderate Unreviewed
CVE-2022-47007 was published Aug 22, 2023
A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Software MuPDF 1.17.0 allows... Moderate Unreviewed
CVE-2020-26683 was published Aug 22, 2023
An issue was discovered function pr_function_type in prdbg.c in Binutils 2.34 thru 2.38, allows... Moderate Unreviewed
CVE-2022-47010 was published Aug 22, 2023
A memory consumption issue in get_data function in binutils/nm.c in GNU nm before 2.34 allows... Moderate Unreviewed
CVE-2020-19724 was published Aug 22, 2023
An issue was discovered in GNU Binutils 2.34. It is a memory leak when process microblaze-dis.c.... Moderate Unreviewed
CVE-2020-21490 was published Aug 22, 2023
ImageMagick before 6.9.12-91 allows attackers to cause a denial of service (memory consumption)... Low Unreviewed
CVE-2023-39978 was published Aug 8, 2023
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The... High Unreviewed
CVE-2023-32247 was published Jul 24, 2023
When UDP profile with idle timeout set to immediate or the value 0 is configured on a virtual... High Unreviewed
CVE-2023-29163 was published Jul 6, 2023
An incorrect TLB flush issue was found in the Linux kernel’s GPU i915 kernel driver, potentially... High Unreviewed
CVE-2022-4139 was published Jul 6, 2023
An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller... High Unreviewed
CVE-2022-3577 was published Jul 6, 2023
CometBFT may duplicate transactions in the mempool's data structures High
CVE-2023-34451 was published for github.com/cometbft/cometbft (Go) Jul 5, 2023
otrack
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database