Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,010
NuGet
720
pip
3,810
Pub
12
RubyGems
930
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,147 advisories

Loading
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a privileged user to cause a... Moderate Unreviewed
CVE-2017-1495 was published May 17, 2022
libgadu before 1.8.2 allows remote servers to cause a denial of service (crash) via a contact... Moderate Unreviewed
CVE-2008-4776 was published May 17, 2022
Off-by-one error in the rfc822_output_char function in the RFC822BUFFER routines in the... Moderate Unreviewed
CVE-2008-5514 was published May 17, 2022
Heap buffer overflow in the yr_object_array_set_item() function in object.c in YARA 3.x allows a... Moderate Unreviewed
CVE-2017-11328 was published May 17, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer helper... Moderate Unreviewed
CVE-2017-6260 was published May 17, 2022
Windows Subsystem for Linux in Windows 10 1703, allows a denial of service vulnerability due to... Moderate Unreviewed
CVE-2017-8627 was published May 17, 2022
Reporter.exe in Acunetix 8 allows remote attackers to cause a denial of service (application... Moderate Unreviewed
CVE-2017-11674 was published May 17, 2022
A vulnerability due to the improper handling of direct memory access (DMA) buffers on EX4300... Moderate Unreviewed
CVE-2021-0242 was published May 24, 2022
In memory management driver, there is a possible system crash due to a missing bounds check. This... Moderate Unreviewed
CVE-2021-0422 was published May 24, 2022
In memory management driver, there is a possible system crash due to a missing bounds check. This... Moderate Unreviewed
CVE-2021-0420 was published May 24, 2022
Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gif_process_raster at... Moderate Unreviewed
CVE-2020-21050 was published May 24, 2022
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c. Moderate Unreviewed
CVE-2020-21535 was published May 24, 2022
In memory management driver, there is a possible system crash due to a missing bounds check. This... Moderate Unreviewed
CVE-2021-0424 was published May 24, 2022
Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 10 is... Moderate Unreviewed
CVE-2021-34379 was published May 24, 2022
Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20267 was published May 24, 2022
Mikrotik RouterOs before stable 6.47 suffers from a memory corruption vulnerability in the... Moderate Unreviewed
CVE-2020-20249 was published May 24, 2022
The (1) parse_str, (2) preg_match, (3) unpack, and (4) pack functions; the (5) ZEND_FETCH_RW, (6)... Moderate Unreviewed
CVE-2010-2191 was published May 17, 2022
Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0 allows remote attackers to cause a... Moderate Unreviewed
CVE-2010-2350 was published May 17, 2022
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of... Moderate Unreviewed
CVE-2021-3405 was published May 24, 2022
In libjpeg before 1.64, BitStream<false>::Get in bitstream.hpp has an assertion failure that may... Moderate Unreviewed
CVE-2022-31620 was published May 26, 2022
In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. A crafted TIFF document can lead... Moderate Unreviewed
CVE-2020-35522 was published May 24, 2022
A flaw was found in libtiff. Due to a memory allocation failure in tif_read.c, a crafted TIFF... Moderate Unreviewed
CVE-2020-35521 was published May 24, 2022
The patch for CVE-2020-17380/CVE-2020-25085 was found to be ineffective, thus making QEMU... Moderate Unreviewed
CVE-2021-3409 was published May 24, 2022
Mikrotik RouterOs before 6.46.5 (stable tree) suffers from a memory corruption vulnerability in... Moderate Unreviewed
CVE-2020-20247 was published May 24, 2022
Multiple buffer overflows in the PDF distiller component in the BlackBerry Attachment Service in... Moderate Unreviewed
CVE-2010-2602 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database