Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

10,957 advisories

Loading
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro ... High Unreviewed
CVE-2010-4543 was published May 13, 2022
Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb function in plug-ins/gfig/gfig... Moderate Unreviewed
CVE-2010-4542 was published May 13, 2022
Stack-based buffer overflow in the loadit function in plug-ins/common/sphere-designer.c in the... High Unreviewed
CVE-2010-4541 was published May 13, 2022
The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in... Moderate Unreviewed
CVE-2011-2896 was published May 13, 2022
Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows... Moderate Unreviewed
CVE-2012-3403 was published May 13, 2022
In GIMP 2.8.22, there is a heap-based buffer overflow in the fli_read_brun function in plug-ins... High Unreviewed
CVE-2017-17785 was published May 13, 2022
Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD)... Moderate Unreviewed
CVE-2013-1978 was published May 13, 2022
Multiple stack-based buffer overflows in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2... High Unreviewed
CVE-2012-5576 was published May 13, 2022
Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to execute... High Unreviewed
CVE-2015-3209 was published May 13, 2022
An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus... Moderate Unreviewed
CVE-2019-6454 was published May 13, 2022
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows... High Unreviewed
CVE-2010-2560 was published May 13, 2022
The get_abbrev_array_info function in libdwarf-20151114 allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2016-2050 was published May 13, 2022
dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2016-5034 was published May 13, 2022
The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote... High Unreviewed
CVE-2016-5044 was published May 13, 2022
Heap-based buffer overflow in the _dwarf_skim_forms function in libdwarf/dwarf_macro5.c in... High Unreviewed
CVE-2016-9275 was published May 13, 2022
LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver... Critical Unreviewed
CVE-2018-20749 was published May 13, 2022
LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient... Critical Unreviewed
CVE-2018-20748 was published May 13, 2022
LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver... Critical Unreviewed
CVE-2018-20750 was published May 13, 2022
LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound... Critical Unreviewed
CVE-2018-20019 was published May 13, 2022
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially... Critical Unreviewed
CVE-2019-0160 was published May 13, 2022
In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT... High Unreviewed
CVE-2019-9162 was published May 13, 2022
A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk Endpoint Privilege... High Unreviewed
CVE-2019-9627 was published May 13, 2022
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash... Moderate Unreviewed
CVE-2019-9209 was published May 13, 2022
In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the ... High Unreviewed
CVE-2019-8956 was published May 13, 2022
Math overflow in Skia in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61... High Unreviewed
CVE-2017-5113 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database