Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

486 advisories

Loading
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-13055 was published May 13, 2022
The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print(). Critical Unreviewed
CVE-2017-13052 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c... Critical Unreviewed
CVE-2017-13053 was published May 13, 2022
The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c... Critical Unreviewed
CVE-2017-13050 was published May 13, 2022
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). Critical Unreviewed
CVE-2017-13047 was published May 13, 2022
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). Critical Unreviewed
CVE-2017-13048 was published May 13, 2022
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c... Critical Unreviewed
CVE-2017-13054 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). Critical Unreviewed
CVE-2017-13046 was published May 13, 2022
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). Critical Unreviewed
CVE-2017-13051 was published May 13, 2022
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). Critical Unreviewed
CVE-2017-13038 was published May 13, 2022
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print(). Critical Unreviewed
CVE-2017-13044 was published May 13, 2022
The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print(). Critical Unreviewed
CVE-2017-13042 was published May 13, 2022
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn(). Critical Unreviewed
CVE-2017-13043 was published May 13, 2022
The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print(). Critical Unreviewed
CVE-2017-13045 was published May 13, 2022
The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print(). Critical Unreviewed
CVE-2017-13049 was published May 13, 2022
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c... Critical Unreviewed
CVE-2017-13041 was published May 13, 2022
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c... Critical Unreviewed
CVE-2017-13035 was published May 13, 2022
The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print... Critical Unreviewed
CVE-2017-13031 was published May 13, 2022
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts(). Critical Unreviewed
CVE-2017-13037 was published May 13, 2022
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). Critical Unreviewed
CVE-2017-13033 was published May 13, 2022
The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions. Critical Unreviewed
CVE-2017-13040 was published May 13, 2022
The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3(). Critical Unreviewed
CVE-2017-13036 was published May 13, 2022
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). Critical Unreviewed
CVE-2017-13034 was published May 13, 2022
The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several... Critical Unreviewed
CVE-2017-13039 was published May 13, 2022
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print(). Critical Unreviewed
CVE-2017-13021 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database