Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,321 advisories

Loading
Stack overflow in DxeCore for EDK II may allow an unauthenticated user to potentially enable... Moderate Unreviewed
CVE-2018-12183 was published May 13, 2022
imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to... Moderate Unreviewed
CVE-2017-9203 was published May 13, 2022
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel... Moderate Unreviewed
CVE-2017-3630 was published May 13, 2022
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 5.0... Moderate Unreviewed
CVE-2017-0695 was published May 13, 2022
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds... Moderate Unreviewed
CVE-2018-10883 was published May 13, 2022
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound... Moderate Unreviewed
CVE-2018-10881 was published May 13, 2022
A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound... Moderate Unreviewed
CVE-2018-10882 was published May 13, 2022
In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer... Moderate Unreviewed
CVE-2018-5388 was published May 13, 2022
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause an out... Moderate Unreviewed
CVE-2018-7517 was published May 13, 2022
The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments... Moderate Unreviewed
CVE-2010-2089 was published May 13, 2022
In ihevcd_sao_shift_ctb of ihevcd_sao.c there is a possible out of bounds write due to missing... Moderate Unreviewed
CVE-2018-9552 was published May 13, 2022
An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can... Moderate Unreviewed
CVE-2018-10538 was published May 13, 2022
An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can... Moderate Unreviewed
CVE-2018-10539 was published May 13, 2022
An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Out-of-bounds writes can... Moderate Unreviewed
CVE-2018-10540 was published May 13, 2022
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2015-8784 was published May 13, 2022
tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a... Moderate Unreviewed
CVE-2015-8782 was published May 13, 2022
tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an... Moderate Unreviewed
CVE-2015-8781 was published May 13, 2022
Stack-based buffer overflow in the get_component function in unsquashfs.c in unsquashfs in... Moderate Unreviewed
CVE-2012-4024 was published May 13, 2022
Heap-based buffer overflow in Google Chrome before 17.0.963.56 allows remote attackers to cause a... Moderate Unreviewed
CVE-2011-3019 was published May 13, 2022
The shader translator implementation in Google Chrome before 17.0.963.46 allows remote attackers... Moderate Unreviewed
CVE-2011-3972 was published May 13, 2022
The International Components for Unicode (ICU) functionality in Google Chrome before 13.0.782.107... Moderate Unreviewed
CVE-2011-2791 was published May 13, 2022
The main function in tools/wasm2js.cpp in Binaryen 1.38.22 has a heap-based buffer overflow... Moderate Unreviewed
CVE-2019-7154 was published May 13, 2022
Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segmentation fault) in... Moderate Unreviewed
CVE-2018-16999 was published May 13, 2022
Stack-based buffer overflow in the ast_uri_encode function in main/utils.c in Asterisk Open... Moderate Unreviewed
CVE-2011-0495 was published May 13, 2022
Heap-based buffer overflow in the read_u32 function in Mozilla Firefox before 29.0, Firefox ESR... Moderate Unreviewed
CVE-2014-1523 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database