Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,951 advisories

Loading
Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl... High Unreviewed
CVE-2009-2950 was published May 2, 2022
Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39,... High Unreviewed
CVE-2009-2629 was published May 2, 2022
Stack-based buffer overflow in Hamster Audio Player 0.3a allows remote attackers to execute... High Unreviewed
CVE-2009-2550 was published May 2, 2022
Heap-based buffer overflow in SCMPX 1.5.1 allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2009-2403 was published May 2, 2022
Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9... High Unreviewed
CVE-2009-1862 was published May 2, 2022
Microsoft Internet Explorer 8 for Windows XP SP2 and SP3; 8 for Server 2003 SP2; 8 for Vista Gold... High Unreviewed
CVE-2009-1532 was published May 2, 2022
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or... High Unreviewed
CVE-2009-0733 was published May 2, 2022
Stack-based buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP1 and SP2;... High Unreviewed
CVE-2009-0563 was published May 2, 2022
Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro... High Unreviewed
CVE-2009-0490 was published May 2, 2022
Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007... High Unreviewed
CVE-2008-3471 was published May 2, 2022
Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local... High Unreviewed
CVE-2008-3024 was published May 1, 2022
Stack-based buffer overflow in Adobe Acrobat and Reader 8.1.2 and earlier allows remote attackers... High Unreviewed
CVE-2008-2992 was published May 1, 2022
Heap-based buffer overflow in pcre_compile.c in the Perl-Compatible Regular Expression (PCRE)... High Unreviewed
CVE-2008-2371 was published May 1, 2022
The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute... High Unreviewed
CVE-2007-6427 was published May 1, 2022
Heap-based buffer overflow in QEMU 0.8.2, as used in Xen and possibly other products, allows... High Unreviewed
CVE-2007-5730 was published May 1, 2022
Buffer underflow in redlight.sys in BufferZone 2.1 and 2.5 allows local users to cause a denial... High Unreviewed
CVE-2007-4580 was published May 1, 2022
Stack-based buffer overflow in the giomgr process in ESRI ArcSDE service 9.2, as used with ArcGIS... High Unreviewed
CVE-2007-4278 was published May 1, 2022
Multiple heap-based buffer overflows in the cirrus_invalidate_region function in the Cirrus VGA... High Unreviewed
CVE-2007-1320 was published May 1, 2022
Heap-based buffer overflow in Golden FTP Server (goldenftpd) 1.92 allows remote attackers to... High Unreviewed
CVE-2006-6576 was published May 1, 2022
Buffer overflow in getsym in tekhex.c in libbfd in Free Software Foundation GNU Binutils before... High Unreviewed
CVE-2006-2362 was published May 1, 2022
Heap-based buffer overflow in the SvrAppendReceivedChunk function in xlsasink.dll in the SMTP... High Unreviewed
CVE-2005-0560 was published May 1, 2022
Buffer underflow in ssldump 0.9b2 and earlier allows remote attackers to cause a denial of... High Unreviewed
CVE-2002-2227 was published Apr 30, 2022
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow... High Unreviewed
CVE-2002-0184 was published Apr 30, 2022
Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe... High Unreviewed
CVE-2010-0128 was published Apr 30, 2022
There is a stack-based buffer overflow in the third instance of the calculate_gain function in... High Unreviewed
CVE-2018-20196 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database