Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,124
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

220 advisories

Loading
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU... High Unreviewed
CVE-2020-6096 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa... Moderate Unreviewed
CVE-2019-5148 was published May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's... High Unreviewed
CVE-2019-5144 was published May 24, 2022
Buffer overflow can occur while processing non-standard NAN message from user space. in... Moderate Unreviewed
CVE-2019-2297 was published May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of... High Unreviewed
CVE-2019-5099 was published May 24, 2022
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive... High Unreviewed
CVE-2019-12678 was published May 24, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a... High Unreviewed
CVE-2019-14523 was published May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an... Critical Unreviewed
CVE-2019-14532 was published May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing... Critical Unreviewed
CVE-2019-14199 was published May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed
CVE-2019-5459 was published May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed
CVE-2019-13602 was published May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an... Moderate Unreviewed
CVE-2019-1628 was published May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed
CVE-2019-9755 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from... Critical Unreviewed
CVE-2019-2245 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from... Critical Unreviewed
CVE-2019-2244 was published May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in... Critical Unreviewed
CVE-2018-11930 was published May 24, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function... Critical Unreviewed
CVE-2019-10053 was published May 24, 2022
An integer underflow may occur due to lack of check when received data length from... High Unreviewed
CVE-2017-18278 was published May 24, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed
CVE-2014-9883 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed
CVE-2017-7367 was published May 17, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3034 was published May 17, 2022
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow... Critical Unreviewed
CVE-2015-2311 was published May 17, 2022
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed
CVE-2017-13666 was published May 17, 2022
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed
CVE-2017-14796 was published May 17, 2022
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to... Moderate Unreviewed
CVE-2017-15874 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database