GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
57 advisories
Filter by severity
A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted...
High
Unreviewed
CVE-2021-20244
was published
May 24, 2022
A flaw was found in ImageMagick in MagickCore/gem.c. An attacker who submits a crafted file that...
High
Unreviewed
CVE-2021-20176
was published
May 24, 2022
Divide by zero issue can happen while updating delta extension header due to improper validation...
High
Unreviewed
CVE-2020-11145
was published
May 24, 2022
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use...
High
Unreviewed
CVE-2020-25708
was published
May 24, 2022
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMF_Decompress(). Parsing...
High
Unreviewed
CVE-2020-16160
was published
May 24, 2022
GoPro gpmf-parser 1.5 has a division-by-zero vulnerability in GPMF_ScaledData(). Parsing...
High
Unreviewed
CVE-2020-16161
was published
May 24, 2022
exif_entry_get_value in exif-entry.c in libexif 0.6.21 has a divide-by-zero error.
High
Unreviewed
CVE-2020-12767
was published
May 24, 2022
Aubio Divide-By-Zero DoS vulnerability in new_aubio_source_wavread function
High
CVE-2017-17054
was published
for
aubio
(pip)
May 17, 2022
The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before...
High
Unreviewed
CVE-2015-3418
was published
May 14, 2022
ImpulseAdventure JPEGsnoop version 1.7.5 is vulnerable to a division by zero in the JFIF decode...
High
Unreviewed
CVE-2017-1000414
was published
May 14, 2022
tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide...
High
Unreviewed
CVE-2017-7598
was published
May 14, 2022
The qmi_wwan_bind function in drivers/net/usb/qmi_wwan.c in the Linux kernel through 4.13.11...
High
Unreviewed
CVE-2017-16650
was published
May 14, 2022
The rgb2ycbcr tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2016-3623
was published
May 14, 2022
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial...
High
Unreviewed
CVE-2016-5323
was published
May 14, 2022
The usbnet_generic_cdc_bind function in drivers/net/usb/cdc_ether.c in the Linux kernel through 4...
High
Unreviewed
CVE-2017-16649
was published
May 14, 2022
Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and...
High
Unreviewed
CVE-2018-16523
was published
May 14, 2022
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by...
High
Unreviewed
CVE-2017-9344
was published
May 14, 2022
Another vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1...
High
Unreviewed
CVE-2017-0857
was published
May 13, 2022
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan...
High
Unreviewed
CVE-2018-19628
was published
May 13, 2022
A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during...
High
Unreviewed
CVE-2017-11464
was published
May 13, 2022
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c...
High
Unreviewed
CVE-2016-9112
was published
May 13, 2022
Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in...
High
Unreviewed
CVE-2018-14423
was published
May 13, 2022
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which...
High
Unreviewed
CVE-2015-6855
was published
May 13, 2022
The igmp_heard_query function in net/ipv4/igmp.c in the Linux kernel before 3.2.1 allows remote...
High
Unreviewed
CVE-2012-0207
was published
May 4, 2022
ProTip!
Advisories are also available from the
GraphQL API