Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

110 advisories

Loading
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Critical Unreviewed
CVE-2019-8205 was published May 24, 2022
A null pointer dereference was addressed with improved input validation. This issue is fixed in... Critical Unreviewed
CVE-2019-8572 was published May 24, 2022
u'Null-pointer dereference can occur while accessing data buffer beyond its size that leads to... Critical Unreviewed
CVE-2020-11168 was published May 24, 2022
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5... Critical Unreviewed
CVE-2021-28300 was published May 24, 2022
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body... Critical Unreviewed
CVE-2021-1946 was published May 24, 2022
liblsquic/lsquic_qenc_hdl.c in LiteSpeed QUIC (aka LSQUIC) before 3.1.0 mishandles... Critical Unreviewed
CVE-2022-30592 was published May 12, 2022
The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.c in the Linux kernel before 4... Critical Unreviewed
CVE-2015-8787 was published May 13, 2022
In Apache Xerces-C XML Parser library before 3.2.1, processing of external DTD paths can result... Critical Unreviewed
CVE-2017-12627 was published May 13, 2022
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL... Critical Unreviewed
CVE-2017-3169 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode... Critical Unreviewed
CVE-2017-14626 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function... Critical Unreviewed
CVE-2017-14625 was published May 13, 2022
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function... Critical Unreviewed
CVE-2017-14624 was published May 13, 2022
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function... Critical Unreviewed
CVE-2017-18211 was published May 13, 2022
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c. Critical Unreviewed
CVE-2017-14532 was published May 13, 2022
In Kamailio before 5.0.7 and 5.1.x before 5.1.4, a crafted SIP message with an invalid Via header... Critical Unreviewed
CVE-2018-16657 was published May 13, 2022
Incomplete validation in boosted trees code Critical
CVE-2021-41208 was published for tensorflow (pip) Nov 10, 2021
drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the Linux kernel 3.x, as used in... Critical Unreviewed
CVE-2015-0573 was published May 13, 2022
zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in... Critical Unreviewed
CVE-2018-1000800 was published May 13, 2022
NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows... Critical Unreviewed
CVE-2016-6604 was published May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_get_path function in util.c. Critical Unreviewed
CVE-2017-11125 was published May 13, 2022
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c. Critical Unreviewed
CVE-2017-11124 was published May 13, 2022
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior,... Critical Unreviewed
CVE-2018-7497 was published May 13, 2022
LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability,... Critical Unreviewed
CVE-2018-17893 was published May 13, 2022
Fuji Electric V-Server 4.0.3.0 and prior, Multiple untrusted pointer dereference vulnerabilities... Critical Unreviewed
CVE-2018-14811 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and... Critical Unreviewed
CVE-2018-4987 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API