Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

281 advisories

Loading
The function PdfPagesTree::GetPageNodeFromArray in PdfPageTree.cpp:464 in PoDoFo 0.9.5 allows... Moderate Unreviewed
CVE-2017-8054 was published May 13, 2022
PoDoFo 0.9.5 allows denial of service (infinite recursion and stack consumption) via a crafted... Moderate Unreviewed
CVE-2017-8053 was published May 13, 2022
libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion... Moderate Unreviewed
CVE-2017-9208 was published May 13, 2022
An issue was discovered in ytnef before 1.9.1. This is related to a patch described as "2 of 9.... Moderate Unreviewed
CVE-2017-6299 was published May 13, 2022
The PoDoFo::PdfPage::GetInheritedKeyFromObject function in base/PdfVariant.cpp in PoDoFo 0.9.4... Moderate Unreviewed
CVE-2017-5852 was published May 13, 2022
When dynamic memory allocation fails, currently the process sleeps for one second and continues... Moderate Unreviewed
CVE-2017-18277 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10... Moderate Unreviewed
CVE-2017-2417 was published May 13, 2022
An issue was discovered in Exempi before 2.4.4. The ASF_Support::ReadHeaderObject function in... Moderate Unreviewed
CVE-2017-18236 was published May 13, 2022
The arch_timer_reg_read_stable macro in arch/arm64/include/asm/arch_timer.h in the Linux kernel... Moderate Unreviewed
CVE-2017-18261 was published May 13, 2022
An issue was discovered in QPDF before 7.0.0. There is an infinite loop in the QPDFWriter:... Moderate Unreviewed
CVE-2017-18183 was published May 13, 2022
The madvise_willneed function in mm/madvise.c in the Linux kernel before 4.14.4 allows local... Moderate Unreviewed
CVE-2017-18208 was published May 13, 2022
An issue was discovered in Exempi before 2.4.4. The TradQT_Manager::ParseCachedBoxes function in... Moderate Unreviewed
CVE-2017-18238 was published May 13, 2022
An issue was discovered in QPDF before 7.0.0. There is an infinite loop due to looping xref... Moderate Unreviewed
CVE-2017-18186 was published May 13, 2022
Timergrp module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10;... Moderate Unreviewed
CVE-2017-17150 was published May 13, 2022
Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50... Moderate Unreviewed
CVE-2017-17131 was published May 13, 2022
Denial-of-service vulnerability in ArGoSoft Mini Mail Server 1.0.0.2 and earlier allows remote... Moderate Unreviewed
CVE-2017-15223 was published May 13, 2022
decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14932 was published May 13, 2022
read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14933 was published May 13, 2022
In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... Moderate Unreviewed
CVE-2017-15835 was published May 13, 2022
find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd),... Moderate Unreviewed
CVE-2017-15024 was published May 13, 2022
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0... Moderate Unreviewed
CVE-2017-11338 was published May 13, 2022
Bad reference counting in the context of accept_ice_connection() in gsm-xsmp-server.c in old... Moderate Unreviewed
CVE-2017-11171 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11627 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11624 was published May 13, 2022
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to... Moderate Unreviewed
CVE-2017-11626 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database