Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,820 advisories

Loading
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located... High Unreviewed
CVE-2019-9878 was published May 13, 2022
There is an invalid memory access vulnerability in the function TextPage::findGaps() located at... High Unreviewed
CVE-2019-9877 was published May 13, 2022
Incorrect optimization assumptions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote... High Unreviewed
CVE-2019-5782 was published May 13, 2022
Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and... High Unreviewed
CVE-2017-3009 was published May 13, 2022
An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This... High Unreviewed
CVE-2018-4871 was published May 13, 2022
Bad cast in DevTools in Google Chrome on Win, Linux, Mac, Chrome OS prior to 66.0.3359.117... High Unreviewed
CVE-2018-6151 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in... High Unreviewed
CVE-2019-7572 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7573 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7574 was published May 13, 2022
ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in... High Unreviewed
CVE-2018-9989 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7578 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7635 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7636 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in... High Unreviewed
CVE-2019-7577 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7576 was published May 13, 2022
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over... High Unreviewed
CVE-2019-7638 was published May 13, 2022
ARM mbed TLS before 2.1.11, before 2.7.2, and before 2.8.0 has a buffer over-read in... High Unreviewed
CVE-2018-9988 was published May 13, 2022
mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of... High Unreviewed
CVE-2018-10392 was published May 13, 2022
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. High Unreviewed
CVE-2018-10393 was published May 13, 2022
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based... High Unreviewed
CVE-2019-9070 was published May 13, 2022
An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02... High Unreviewed
CVE-2018-1056 was published May 13, 2022
The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a... High Unreviewed
CVE-2016-10197 was published May 13, 2022
VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x... High Unreviewed
CVE-2018-6967 was published May 13, 2022
VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x... High Unreviewed
CVE-2018-6965 was published May 13, 2022
VMware ESXi (6.7 before ESXi670-201806401-BG), Workstation (14.x before 14.1.2), and Fusion (10.x... High Unreviewed
CVE-2018-6966 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database