Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,016
Maven
5,000+
npm
3,721
NuGet
662
pip
3,400
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,687 advisories

Loading
Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in... Moderate Unreviewed
CVE-2022-0561 was published Feb 12, 2022
Null source pointer passed as an argument to memcpy() function within TIFFReadDirectory() in... Moderate Unreviewed
CVE-2022-0562 was published Feb 12, 2022
NULL Pointer Dereference in Homebrew mruby prior to 3.2. High Unreviewed
CVE-2022-0481 was published Feb 11, 2022
NULL pointer dereference in the firmware for some Intel(R) Processors may allow a privileged user... Moderate Unreviewed
CVE-2021-0111 was published Feb 11, 2022
Null pointer dereference in subsystem for Intel(R) AMT before versions 15.0.35 may allow an... Moderate Unreviewed
CVE-2021-33068 was published Feb 11, 2022
NULL Pointer Dereference in NPM radare2.js prior to 6.0.0. Moderate Unreviewed
CVE-2022-0419 was published Feb 10, 2022
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that... High Unreviewed
CVE-2021-41839 was published Feb 10, 2022
A Null Pointer Dereference vulnerability exists in GPAC 1.1.0 via the xtra_box_write function in ... Moderate Unreviewed
CVE-2022-24249 was published Feb 10, 2022
NULL Pointer Dereference in GitHub repository gpac/gpac prior to 1.1.0. Moderate Unreviewed
CVE-2021-4043 was published Feb 10, 2022
A crafted URI sent to httpd configured as a forward proxy (ProxyRequests on) can cause a crash ... High Unreviewed
CVE-2021-44224 was published Feb 8, 2022
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm... Moderate Unreviewed
CVE-2022-21815 was published Feb 8, 2022
Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of... High Unreviewed
CVE-2022-22510 was published Feb 3, 2022
MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value... High Unreviewed
CVE-2021-46664 was published Feb 2, 2022
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead... Moderate Unreviewed
CVE-2022-0286 was published Feb 1, 2022
In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h... Moderate Unreviewed
CVE-2021-45340 was published Jan 26, 2022
A flaw in the AMF parser of Slic3r libslic3r 1.3.0 allows an attacker to cause an application... Moderate Unreviewed
CVE-2021-45846 was published Jan 26, 2022
Several missing input validations in the 3MF parser component of Slic3r libslic3r 1.3.0 can each... Moderate Unreviewed
CVE-2021-45847 was published Jan 26, 2022
A NULL pointer dereference issue was found in the block mirror layer of QEMU in versions prior to... Moderate Unreviewed
CVE-2021-4145 was published Jan 26, 2022
On BIG-IP version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.5, and all... High Unreviewed
CVE-2022-23017 was published Jan 26, 2022
On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with... High Unreviewed
CVE-2022-23016 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the... High Unreviewed
CVE-2022-23020 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured... High Unreviewed
CVE-2022-23021 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server,... High Unreviewed
CVE-2022-23022 was published Jan 26, 2022
On BIG-IP version 16.1.x before 16.1.1, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all... High Unreviewed
CVE-2022-23025 was published Jan 26, 2022
NULL Pointer Dereference in Homebrew mruby prior to 3.2. Moderate Unreviewed
CVE-2022-0326 was published Jan 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database