Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,308 advisories

Loading
A heap-based buffer overflow vulnerability exists in the .egi parsing functionality of The Biosig... Critical Unreviewed
CVE-2024-21795 was published Feb 20, 2024
A heap-based buffer overflow vulnerability exists in the GGUF library info->ne functionality... High Unreviewed
CVE-2024-21802 was published Feb 26, 2024
A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to... High Unreviewed
CVE-2024-21885 was published Feb 28, 2024
A heap buffer overflow occurs in the dfs_v2 romfs filesystem RT-Thread through 5.0.2. High Unreviewed
CVE-2024-24335 was published Mar 27, 2024
A heap buffer overflow occurs in finsh/msh_file.c and finsh/msh.c in RT-Thread through 5.0.2. High Unreviewed
CVE-2024-25390 was published Mar 27, 2024
GIMP DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44441 was published May 3, 2024
GIMP PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-44442 was published May 3, 2024
GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37329 was published May 3, 2024
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in... High Unreviewed
CVE-2020-25681 was published May 24, 2022
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in... High Unreviewed
CVE-2020-25683 was published May 24, 2022
A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered in the... High Unreviewed
CVE-2020-25682 was published May 24, 2022
A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in... High Unreviewed
CVE-2020-25687 was published May 24, 2022
Microsoft Excel Remote Code Execution Vulnerability High Unreviewed
CVE-2023-33133 was published Jun 14, 2023
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function... High Unreviewed
CVE-2023-43787 was published Oct 10, 2023
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an... High Unreviewed
CVE-2023-4692 was published Oct 25, 2023
A vulnerability was found in perl. This issue occurs when a crafted regular expression is... High Unreviewed
CVE-2023-47038 was published Dec 30, 2023
The issue was addressed with improved bounds checks. This issue is fixed in watchOS 10.1, macOS... High Unreviewed
CVE-2023-42848 was published Feb 21, 2024
GStreamer PGS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37328 was published May 3, 2024
A flaw was found in Indent. This issue may allow a local user to use a specially-crafted file to... Moderate Unreviewed
CVE-2024-0911 was published Feb 6, 2024
Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via... Moderate Unreviewed
CVE-2024-24246 was published Feb 29, 2024
An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7.... High Unreviewed
CVE-2024-34459 was published May 14, 2024
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault... Moderate Unreviewed
CVE-2025-40929 was published Sep 8, 2025
JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when... High Unreviewed
CVE-2025-40928 was published Sep 8, 2025
JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a... High Unreviewed
CVE-2025-40930 was published Sep 8, 2025
A maliciously crafted project file may cause a heap-based buffer overflow in Fuji Electric... High Unreviewed
CVE-2025-54496 was published Nov 5, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database