Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,820 advisories

Loading
In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c... High Unreviewed
CVE-2017-17786 was published May 13, 2022
In GIMP 2.8.22, there is a heap-based buffer over-read in read_creator_block in plug-ins/common... High Unreviewed
CVE-2017-17787 was published May 13, 2022
In GIMP 2.8.22, there is a heap-based buffer over-read in load_image in plug-ins/common/file-gbr... High Unreviewed
CVE-2017-17784 was published May 13, 2022
A vulnerability has been identified in RFID 181EIP, SIMATIC CP 1604, SIMATIC CP 1616, SIMATIC CP... High Unreviewed
CVE-2019-6568 was published May 13, 2022
libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read... High Unreviewed
CVE-2016-5040 was published May 13, 2022
The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial... High Unreviewed
CVE-2016-5039 was published May 13, 2022
The dump_block function in print_sections.c in libdwarf before 20160923 allows remote attackers... High Unreviewed
CVE-2016-5036 was published May 13, 2022
The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial... High Unreviewed
CVE-2016-5043 was published May 13, 2022
The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows... High Unreviewed
CVE-2016-5038 was published May 13, 2022
The dwarf_get_aranges_list function in dwarf_arrange.c in Libdwarf before 20161124 allows remote... High Unreviewed
CVE-2016-9276 was published May 13, 2022
get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of... High Unreviewed
CVE-2018-13112 was published May 13, 2022
Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree in tree.c. High Unreviewed
CVE-2018-20552 was published May 13, 2022
Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c. High Unreviewed
CVE-2018-20553 was published May 13, 2022
Tcpreplay v4.3.0 beta1 contains a heap-based buffer over-read. The get_next_packet() function in... High Unreviewed
CVE-2018-17582 was published May 13, 2022
A heap-based buffer over-read exists in the function fast_edit_packet() in the file send_packets... High Unreviewed
CVE-2018-17580 was published May 13, 2022
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3... High Unreviewed
CVE-2019-9638 was published May 13, 2022
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3... High Unreviewed
CVE-2019-9640 was published May 13, 2022
In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering... High Unreviewed
CVE-2019-9210 was published May 13, 2022
Insufficient validation of untrusted input in V8 in Google Chrome prior to 59.0.3071.104 for Mac,... High Unreviewed
CVE-2017-5088 was published May 13, 2022
Insufficient validation of untrusted input in Skia in Google Chrome prior to 59.0.3071.86 for... High Unreviewed
CVE-2017-5077 was published May 13, 2022
An out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for Linux, Windows, and Mac,... High Unreviewed
CVE-2017-5054 was published May 13, 2022
When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field... High Unreviewed
CVE-2017-12613 was published May 13, 2022
A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign... High Unreviewed
CVE-2018-10887 was published May 13, 2022
An exploitable out-of-bounds read vulnerability exists in the handling of certain XFA element... High Unreviewed
CVE-2018-3956 was published May 13, 2022
A denial of service vulnerability exists in the psnotifyd application of the Pharos PopUp printer... High Unreviewed
CVE-2017-2786 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database