Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,321 advisories

Loading
A memory consumption issue was addressed with improved memory handling. This issue is fixed in... Moderate Unreviewed
CVE-2020-9819 was published May 24, 2022
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in... Moderate Unreviewed
CVE-2020-9818 was published May 24, 2022
A memory corruption issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2020-9807 was published May 24, 2022
A memory corruption issue was addressed with improved state management. This issue is fixed in... Moderate Unreviewed
CVE-2020-9806 was published May 24, 2022
A heap-based buffer overflow in the hxxx_AnnexB_to_xVC function in modules/packetizer/hxxx_nal.c... Moderate Unreviewed
CVE-2020-13428 was published May 24, 2022
Improper handling of the full-buffer case in the Zephyr Bluetooth implementation can result in... Moderate Unreviewed
CVE-2020-10061 was published May 24, 2022
rom_copy() in hw/core/loader.c in QEMU 4.1.0 does not validate the relationship between two... Moderate Unreviewed
CVE-2020-13765 was published May 24, 2022
ffjpeg through 2020-02-24 has an invalid write in bmp_load in bmp.c. Moderate Unreviewed
CVE-2020-13440 was published May 24, 2022
Type confusion in V8 in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to... Moderate Unreviewed
CVE-2020-6468 was published May 24, 2022
Type confusion in Blink in Google Chrome prior to 81.0.4044.138 allowed a remote attacker to... Moderate Unreviewed
CVE-2020-6464 was published May 24, 2022
Use after free in ANGLE in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to... Moderate Unreviewed
CVE-2020-6463 was published May 24, 2022
Use after free in payments in Google Chrome prior to 81.0.4044.122 allowed a remote attacker to... Moderate Unreviewed
CVE-2020-6459 was published May 24, 2022
Products that use EDS Subsystem: Version 28.0.1 and prior (FactoryTalk Linx software (Previously... Moderate Unreviewed
CVE-2020-12038 was published May 24, 2022
In Cherokee through 1.2.104, multiple memory corruption errors may be used by a remote attacker... Moderate Unreviewed
CVE-2019-20799 was published May 24, 2022
In psi_write of psi.c, there is a possible out of bounds write due to a missing bounds check.... Moderate Unreviewed
CVE-2020-0110 was published May 24, 2022
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as... Moderate Unreviewed
CVE-2020-12762 was published May 24, 2022
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) handler of Cisco... Moderate Unreviewed
CVE-2020-3283 was published May 24, 2022
An exploitable out-of-bounds write vulnerability exists in the store_data_buffer function of the... Moderate Unreviewed
CVE-2020-6075 was published May 24, 2022
An exploitable code execution vulnerability exists in the TIFF fillinraster function of the... Moderate Unreviewed
CVE-2020-6094 was published May 24, 2022
An exploitable out-of-bounds write vulnerability exists in the ico_read function of the igcore19d... Moderate Unreviewed
CVE-2020-6082 was published May 24, 2022
GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c. Moderate Unreviewed
CVE-2020-12672 was published May 24, 2022
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user.... Moderate Unreviewed
CVE-2017-18865 was published May 24, 2022
An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in... Moderate Unreviewed
CVE-2020-12653 was published May 24, 2022
ABBS Software Audio Media Player version 3.1 suffers from an instance of CWE-121: Stack-based... Moderate Unreviewed
CVE-2019-5621 was published May 24, 2022
A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow. Moderate Unreviewed
CVE-2019-5618 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database