Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,259
NuGet
760
pip
4,052
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

11,320 advisories

Loading
cairo through 1.15.14 has an out-of-bounds stack-memory write during processing of a crafted... Moderate Unreviewed
CVE-2018-18064 was published May 13, 2022
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4... Moderate Unreviewed
CVE-2010-2520 was published May 13, 2022
Heap-based buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType... Moderate Unreviewed
CVE-2010-2519 was published May 13, 2022
FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow... Critical Unreviewed
CVE-2016-10328 was published May 13, 2022
There is a remote stack-based buffer overflow (SEH) in register.ghp in EFS Software Easy Chat... Critical Unreviewed
CVE-2017-9544 was published May 13, 2022
Heap-based buffer overflow in the zzip_mem_entry_extra_block function in memdisk.c in zziplib 0... Moderate Unreviewed
CVE-2017-5976 was published May 13, 2022
The psh_glyph_find_strong_points function in pshinter/pshalgo.c in FreeType before 2.4.0 does not... Moderate Unreviewed
CVE-2010-2498 was published May 13, 2022
Heap-based buffer overflow in the __zzip_get64 function in fetch.c in zziplib 0.13.62, 0.13.61, 0... Moderate Unreviewed
CVE-2017-5975 was published May 13, 2022
Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a... High Unreviewed
CVE-2014-3676 was published May 13, 2022
InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine... Critical Unreviewed
CVE-2018-17916 was published May 13, 2022
An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad... High Unreviewed
CVE-2018-14681 was published May 13, 2022
A stack-based buffer overflow vulnerability in Opto 22 PAC Control Basic and PAC Control... Critical Unreviewed
CVE-2018-14807 was published May 13, 2022
Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6 allows remote attackers to... Moderate Unreviewed
CVE-2017-12876 was published May 13, 2022
Stack overflow in XHCI for EDK II may allow an unauthenticated user to potentially enable denial... Moderate Unreviewed
CVE-2019-0161 was published May 13, 2022
IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M,... High Unreviewed
CVE-2018-10601 was published May 13, 2022
IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M,... High Unreviewed
CVE-2018-10597 was published May 13, 2022
In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input... Moderate Unreviewed
CVE-2018-18584 was published May 13, 2022
Stack-based buffer overflow in the vrend_decode_set_framebuffer_state function in vrend_decode.c... Moderate Unreviewed
CVE-2017-5957 was published May 13, 2022
Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the... Moderate Unreviewed
CVE-2018-16435 was published May 13, 2022
An out-of-bounds write (Remote Code Execution) issue was discovered in Design Science MathType 6... Critical Unreviewed
CVE-2018-6639 was published May 13, 2022
A Heap Overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c.... Critical Unreviewed
CVE-2018-6640 was published May 13, 2022
A stack-based buffer overflow (Remote Code Execution) issue was discovered in Design Science... Critical Unreviewed
CVE-2018-6638 was published May 13, 2022
In Apache httpd 2.0.23 to 2.0.65, 2.2.0 to 2.2.34, and 2.4.0 to 2.4.29, mod_authnz_ldap, if... High Unreviewed
CVE-2017-15710 was published May 13, 2022
libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow.... Critical Unreviewed
CVE-2019-3822 was published May 13, 2022
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2011-3439 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database