Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,321 advisories

Loading
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll BMP parser of the... Moderate Unreviewed
CVE-2019-5133 was published May 24, 2022
In the Linux kernel 5.0.21, a setxattr operation, after a mount of a crafted ext4 image, can... Moderate Unreviewed
CVE-2019-19319 was published May 24, 2022
An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation,... Moderate Unreviewed
CVE-2019-18676 was published May 24, 2022
Out of bounds write in JavaScript in Google Chrome prior to 73.0.3683.86 allowed a remote... Moderate Unreviewed
CVE-2019-5825 was published May 24, 2022
Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to... Moderate Unreviewed
CVE-2019-13720 was published May 24, 2022
Use after free in WebBluetooth in Google Chrome prior to 78.0.3904.108 allowed a remote attacker... Moderate Unreviewed
CVE-2019-13723 was published May 24, 2022
Out of bounds memory access in PDFium in Google Chrome prior to 78.0.3904.70 allowed a remote... Moderate Unreviewed
CVE-2019-13706 was published May 24, 2022
Out of bounds memory access in the gamepad API in Google Chrome prior to 78.0.3904.70 allowed a... Moderate Unreviewed
CVE-2019-13700 was published May 24, 2022
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the... Moderate Unreviewed
CVE-2019-5087 was published May 24, 2022
An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the... Moderate Unreviewed
CVE-2019-5086 was published May 24, 2022
Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful... Moderate Unreviewed
CVE-2019-8239 was published May 24, 2022
Adobe Bridge CC versions 9.1 and earlier have a memory corruption vulnerability. Successful... Moderate Unreviewed
CVE-2019-8240 was published May 24, 2022
An exploitable heap overflow vulnerability exists in the JPEG2000 parsing functionality of... Moderate Unreviewed
CVE-2019-5125 was published May 24, 2022
An exploitable heap out-of-bounds write vulnerability exists in the TIF-parsing functionality of... Moderate Unreviewed
CVE-2019-5084 was published May 24, 2022
A stack based buffer overflow vulnerability exists in the method receiving data from... Moderate Unreviewed
CVE-2016-4289 was published May 24, 2022
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017... Moderate Unreviewed
CVE-2019-8170 was published May 24, 2022
In libhidcommand_jni, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2019-9288 was published May 24, 2022
In the NFC stack, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2019-9238 was published May 24, 2022
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps... Moderate Unreviewed
CVE-2019-16927 was published May 24, 2022
In Apache HTTP Server 2.4.32-2.4.39, when mod_remoteip was configured to use a trusted... Moderate Unreviewed
CVE-2019-10097 was published May 24, 2022
An exploitable code execution vulnerability exists in the quota file functionality of E2fsprogs 1... Moderate Unreviewed
CVE-2019-5094 was published May 24, 2022
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt... Moderate Unreviewed
CVE-2019-9719 was published May 24, 2022
ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load() at jfif.c. Moderate Unreviewed
CVE-2019-16352 was published May 24, 2022
SciLexer.dll in Scintilla in Notepad++ (x64) before 7.7 allows remote code execution or denial of... Moderate Unreviewed
CVE-2019-16294 was published May 24, 2022
sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in... Moderate Unreviewed
CVE-2019-16167 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database