Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,321 advisories

Loading
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsi_ArraySliceCmd in src... Moderate Unreviewed
CVE-2021-46475 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c.... Moderate Unreviewed
CVE-2021-46478 was published Jan 26, 2022
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src... Moderate Unreviewed
CVE-2021-46480 was published Jan 26, 2022
GPAC v1.1.0 was discovered to contain a stack overflow via the function gf_node_get_name () at... Moderate Unreviewed
CVE-2021-46238 was published Jan 22, 2022
UltraJSON vulnerable to Out-of-bounds Write Moderate
CVE-2021-45958 was published for ujson (pip) Jan 21, 2022
JustAnotherArchivist
Credited to JustAnotherArchivist
Spin v6.5.1 was discovered to contain an out-of-bounds write in lex() at spinlex.c. Moderate Unreviewed
CVE-2021-46168 was published Jan 15, 2022
A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the... Moderate Unreviewed
CVE-2021-37530 was published Jan 13, 2022
A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function... Moderate Unreviewed
CVE-2021-36410 was published Jan 12, 2022
There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful... Moderate Unreviewed
CVE-2021-40009 was published Jan 11, 2022
A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function. Moderate Unreviewed
CVE-2021-46050 was published Jan 11, 2022
In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward... Moderate Unreviewed
CVE-2022-22707 was published Jan 7, 2022
Out-of-bounds Write in nix Moderate
CVE-2021-45707 was published for nix (Rust) Jan 6, 2022
Polyhistorian
Credited to Polyhistorian
A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in ... Moderate Unreviewed
CVE-2021-45830 was published Jan 6, 2022
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c,... Moderate Unreviewed
CVE-2021-45832 was published Jan 6, 2022
A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the... Moderate Unreviewed
CVE-2021-45833 was published Jan 6, 2022
In vow driver, there is a possible memory corruption due to improper input validation. This could... Moderate Unreviewed
CVE-2022-20014 was published Jan 5, 2022
Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1... Moderate Unreviewed
CVE-2021-35093 was published Jan 4, 2022
uWebSockets 19.0.0 through 20.8.0 has an out-of-bounds write in std::__1::pair<unsigned int, void... Moderate Unreviewed
CVE-2021-45945 was published Jan 2, 2022
Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from CompileElseBlock and... Moderate Unreviewed
CVE-2021-45929 was published Jan 2, 2022
Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and... Moderate Unreviewed
CVE-2021-45946 was published Jan 2, 2022
Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and... Moderate Unreviewed
CVE-2021-45947 was published Jan 2, 2022
Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in... Moderate Unreviewed
CVE-2021-45948 was published Jan 2, 2022
Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish ... Moderate Unreviewed
CVE-2021-45949 was published Jan 2, 2022
LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private ... Moderate Unreviewed
CVE-2021-45950 was published Jan 2, 2022
HarfBuzz 2.9.0 has an out-of-bounds write in hb_bit_set_invertible_t::set (called from... Moderate Unreviewed
CVE-2021-45931 was published Jan 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database