Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,262
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,985 advisories

Loading
FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7864 was published May 13, 2022
FreeType 2 before 2017-03-07 has an out-of-bounds write related to the TT_Get_MM_Var function in... Critical Unreviewed
CVE-2017-7858 was published May 13, 2022
FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-8105 was published May 13, 2022
FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7857 was published May 13, 2022
In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in... Critical Unreviewed
CVE-2017-17480 was published May 13, 2022
FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2016-10328 was published May 13, 2022
There is a remote stack-based buffer overflow (SEH) in register.ghp in EFS Software Easy Chat... Critical Unreviewed
CVE-2017-9544 was published May 13, 2022
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine... Critical Unreviewed
CVE-2018-17916 was published May 13, 2022
A stack-based buffer overflow vulnerability in Opto 22 PAC Control Basic and PAC Control... Critical Unreviewed
CVE-2018-14807 was published May 13, 2022
A Heap Overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c.... Critical Unreviewed
CVE-2018-6640 was published May 13, 2022
An out-of-bounds write (Remote Code Execution) issue was discovered in Design Science MathType 6... Critical Unreviewed
CVE-2018-6639 was published May 13, 2022
A stack-based buffer overflow (Remote Code Execution) issue was discovered in Design Science... Critical Unreviewed
CVE-2018-6638 was published May 13, 2022
libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow.... Critical Unreviewed
CVE-2019-3822 was published May 13, 2022
The webService binary on Insteon HD IP Camera White 2864-222 devices has a stack-based Buffer... Critical Unreviewed
CVE-2018-11560 was published May 13, 2022
UltraVNC revision 1203 has multiple heap buffer overflow vulnerabilities in VNC client code... Critical Unreviewed
CVE-2019-8262 was published May 13, 2022
A global buffer overflow was discovered in the iteration_loop function in loop.c in BladeEnc... Critical Unreviewed
CVE-2017-14648 was published May 13, 2022
Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through 3.28.x before 3.28.4, 3.29... Critical Unreviewed
CVE-2017-5461 was published May 13, 2022
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote... Critical Unreviewed
CVE-2018-7183 was published May 13, 2022
FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP... Critical Unreviewed
CVE-2019-9760 was published May 13, 2022
tls1.c in Cameron Hamilton-Rich axTLS before 2.1.5 has a Buffer Overflow via a crafted sequence... Critical Unreviewed
CVE-2019-8981 was published May 13, 2022
RIOT RIOT-OS version after commit 7af03ab624db0412c727eed9ab7630a5282e2fd3 contains a Buffer... Critical Unreviewed
CVE-2019-1000006 was published May 13, 2022
Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2... Critical Unreviewed
CVE-2018-11218 was published May 13, 2022
Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an... Critical Unreviewed
CVE-2017-2615 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015... Critical Unreviewed
CVE-2018-4917 was published May 13, 2022
Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, 2015... Critical Unreviewed
CVE-2018-4918 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database