Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,056
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,321 advisories

Loading
Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest... High Unreviewed
CVE-2015-7504 was published May 13, 2022
An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" function (internal/dcraw_common... Moderate Unreviewed
CVE-2018-5800 was published May 13, 2022
Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the... High Unreviewed
CVE-2013-4365 was published May 13, 2022
Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting a file, allows user... High Unreviewed
CVE-2019-9767 was published May 13, 2022
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the exec.c:hashcmd()... Moderate Unreviewed
CVE-2018-1071 was published May 13, 2022
zsh through version 5.4.2 is vulnerable to a stack-based buffer overflow in the utils.c... High Unreviewed
CVE-2018-1100 was published May 13, 2022
libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud... Critical Unreviewed
CVE-2016-4614 was published May 13, 2022
The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service ... High Unreviewed
CVE-2015-8619 was published May 13, 2022
In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value... High Unreviewed
CVE-2018-5332 was published May 13, 2022
FreeType 2 before 2017-02-02 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7864 was published May 13, 2022
FreeType 2 before 2017-03-07 has an out-of-bounds write related to the TT_Get_MM_Var function in... Critical Unreviewed
CVE-2017-7858 was published May 13, 2022
FreeType 2 before 2017-03-08 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-7857 was published May 13, 2022
FreeType 2 before 2017-03-24 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2017-8105 was published May 13, 2022
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted... High Unreviewed
CVE-2016-9675 was published May 13, 2022
An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info... High Unreviewed
CVE-2018-16375 was published May 13, 2022
An issue was discovered in JasPer 1.900.8, 1.900.9, 1.900.10, 1.900.11, 1.900.12, 1.900.13, 1.900... High Unreviewed
CVE-2018-19540 was published May 13, 2022
A mishandled zero case was discovered in opj_j2k_set_cinema_parameters in lib/openjp2/j2k.c in... High Unreviewed
CVE-2017-14152 was published May 13, 2022
A stack-based buffer overflow was discovered in the pgxtoimage function in bin/jp2/convert.c in... High Unreviewed
CVE-2017-14041 was published May 13, 2022
An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash... High Unreviewed
CVE-2017-14040 was published May 13, 2022
A heap-based buffer overflow was discovered in the opj_t2_encode_packet function in lib/openjp2... High Unreviewed
CVE-2017-14039 was published May 13, 2022
In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in... Critical Unreviewed
CVE-2017-17480 was published May 13, 2022
An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0... High Unreviewed
CVE-2018-17095 was published May 13, 2022
LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0... High Unreviewed
CVE-2018-18557 was published May 13, 2022
Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3,... High Unreviewed
CVE-2018-12900 was published May 13, 2022
The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later... High Unreviewed
CVE-2018-11489 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database