Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

6,919 advisories

Loading
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global... Critical Unreviewed
CVE-2021-3643 was published May 3, 2022
The License Logging Server (llssrv.exe) in Microsoft Windows 2000 SP4 allows remote attackers to... High Unreviewed
CVE-2009-2523 was published May 2, 2022
The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a... Moderate Unreviewed
CVE-2007-3847 was published May 1, 2022
wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the... Moderate Unreviewed
CVE-2006-6016 was published May 1, 2022
Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407... Low Unreviewed
CVE-2006-5393 was published May 1, 2022
Local user gains root privileges via buffer overflow in rdist, via expstr() function. High Unreviewed
CVE-1999-0022 was published Apr 30, 2022
root privileges via buffer overflow in ordist command on SGI IRIX systems. High Unreviewed
CVE-1999-0029 was published Apr 30, 2022
Incorrect handling of complex species in V8 in Google Chrome prior to 57.0.2987.98 for Linux,... High Unreviewed
CVE-2017-5030 was published Apr 30, 2022
The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token... High Unreviewed
CVE-2017-7668 was published Apr 30, 2022
An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. It is a buffer over... High Unreviewed
CVE-2019-6956 was published Apr 30, 2022
A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel... Moderate Unreviewed
CVE-2019-3459 was published Apr 30, 2022
Buffer Over-read at parse_rawml.c:1416 in GitHub repository bfabiszewski/libmobi prior to 0.11.... High Unreviewed
CVE-2022-1534 was published Apr 30, 2022
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11. This vulnerability is... High Unreviewed
CVE-2022-1533 was published Apr 30, 2022
ASDA-Soft: Version 5.4.1.0 and prior does not properly sanitize input while processing a specific... High Unreviewed
CVE-2022-1402 was published Apr 30, 2022
sipclient.cpp in KPhone 4.0.1 and earlier allows remote attackers to cause a denial of service ... Moderate Unreviewed
CVE-2004-1940 was published Apr 29, 2022
The Portable Network Graphics library (libpng) 1.0.15 and earlier allows attackers to cause a... Moderate Unreviewed
CVE-2004-0421 was published Apr 29, 2022
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service (crash)... Moderate Unreviewed
CVE-2004-0221 was published Apr 29, 2022
Integer underflow in the isakmp_id_print for TCPDUMP 3.8.1 and earlier allows remote attackers to... Moderate Unreviewed
CVE-2004-0184 was published Apr 29, 2022
TCPDUMP 3.8.1 and earlier allows remote attackers to cause a denial of service (crash) via ISAKMP... Moderate Unreviewed
CVE-2004-0183 was published Apr 29, 2022
MP4Box is a component of GPAC-2.0.0, which is a widely-used third-party package on RPM Fusion.... High Unreviewed
CVE-2022-1441 was published Apr 26, 2022
Out-of-bounds Read in r_bin_java_constant_value_attr_new function in GitHub repository radareorg... High Unreviewed
CVE-2022-1451 was published Apr 25, 2022
Out-of-bounds Read in r_bin_java_bootstrap_methods_attr_new function in GitHub repository... High Unreviewed
CVE-2022-1452 was published Apr 25, 2022
Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. #... High Unreviewed
CVE-2022-1427 was published Apr 24, 2022
FreeType commit 53dfdcd8198d2b3201a23c4bad9190519ba918db was discovered to contain a segmentation... High Unreviewed
CVE-2022-27405 was published Apr 23, 2022
FreeType commit 22a0cccb4d9d002f33c1ba7a4b36812c7d4f46b5 was discovered to contain a segmentation... High Unreviewed
CVE-2022-27406 was published Apr 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database