GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
140 advisories
Filter by severity
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-multipart.c has a memory...
High
Unreviewed
CVE-2018-9271
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-pcp.c has a memory leak.
High
Unreviewed
CVE-2018-9273
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-tn3270.c has a memory leak.
High
Unreviewed
CVE-2018-9265
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-h223.c has a memory leak.
High
Unreviewed
CVE-2018-9272
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-isup.c has a memory leak.
High
Unreviewed
CVE-2018-9266
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/oids.c has a memory leak.
High
Unreviewed
CVE-2018-9270
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-smb2.c has a memory leak.
High
Unreviewed
CVE-2018-9268
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-lapd.c has a memory leak.
High
Unreviewed
CVE-2018-9267
was published
May 13, 2022
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ui/failure_message.c has a memory leak.
High
Unreviewed
CVE-2018-9274
was published
May 13, 2022
A service worker can send the activate event on itself periodically which allows it to run...
High
Unreviewed
CVE-2018-5179
was published
May 24, 2022
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device...
High
Unreviewed
CVE-2019-16995
was published
May 24, 2022
Foxit Reader before 9.7 allows an Access Violation and crash if insufficient memory exists.
High
Unreviewed
CVE-2019-17183
was published
May 24, 2022
A failure to free memory can occur when processing messages having a specific combination of EDNS...
High
Unreviewed
CVE-2018-5744
was published
May 24, 2022
Boa through 0.94.14rc21 allows remote attackers to trigger a memory leak because of missing calls...
High
Unreviewed
CVE-2018-21028
was published
May 24, 2022
The Video_Converter app 0.1.0 for Nextcloud allows denial of service (CPU and memory consumption)...
High
Unreviewed
CVE-2019-18214
was published
May 24, 2022
In the Linux kernel before 5.3.4, a reference count usage error in the fib6_rule_suppress()...
High
Unreviewed
CVE-2019-18198
was published
May 24, 2022
On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, and 12.1.0-12...
High
Unreviewed
CVE-2019-6681
was published
May 24, 2022
A memory leak in the TFTP service in B&R Automation Runtime versions <N4.26, <N4.34, <F4.45, <E4...
High
Unreviewed
CVE-2020-11637
was published
May 24, 2022
A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the...
High
Unreviewed
CVE-2020-14339
was published
May 24, 2022
smtpd/table.c in OpenSMTPD before 6.8.0p1 lacks a certain regfree, which might allow attackers to...
High
Unreviewed
CVE-2020-35679
was published
May 24, 2022
Any git operation is passed through Jetty and a session is created. No expiry is set for the...
High
Unreviewed
CVE-2021-22553
was published
May 24, 2022
Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to a denial of service attack...
High
Unreviewed
CVE-2021-22883
was published
May 24, 2022
In Phoenix Contact FL COMSERVER UNI in versions < 2.40 a invalid Modbus exception response can...
High
Unreviewed
CVE-2021-21002
was published
May 24, 2022
Live555 through 1.08 has a memory leak in AC3AudioStreamParser for AC3 files.
High
Unreviewed
CVE-2021-39282
was published
May 24, 2022
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ...
High
Unreviewed
CVE-2021-1523
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API