Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

12,829 advisories

Loading
A heap buffer overflow in Fortinet FortiOS all versions below 6.0.5 in the SSL VPN web portal may... Moderate Unreviewed
CVE-2018-13383 was published May 24, 2022
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID... High Unreviewed
CVE-2023-45230 was published Jan 16, 2024
Heap Overflow in PyMiniRacer High
CVE-2020-25489 was published for py-mini-racer (pip) Sep 18, 2020
Py-EVM is vulnerable to arbitrary bytecode injection High
CVE-2018-18920 was published for py-evm (pip) Nov 21, 2018
PyFriBidi Buffer overflow in the fribidi_utf8_to_unicode function High
CVE-2012-1176 was published for pyfribidi (pip) May 17, 2022
Buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP... High Unreviewed
CVE-2009-2502 was published May 2, 2022
During DOM manipulations of the accessibility tree through script, the DOM tree can become out of... Critical Unreviewed
CVE-2017-5464 was published May 14, 2022
Fixed potential buffer overflows in generated Firefox code due to CVE-2016-6354 issue in Flex.... Critical Unreviewed
CVE-2017-5469 was published May 14, 2022
A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG... Critical Unreviewed
CVE-2017-7786 was published May 14, 2022
Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these... Critical Unreviewed
CVE-2018-5188 was published May 14, 2022
Heap-based buffer overflow in the nsCaseTransformTextRunFactory::TransformString function in... Critical Unreviewed
CVE-2016-5270 was published May 14, 2022
Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function in Mozilla Firefox before... High Unreviewed
CVE-2016-5278 was published May 14, 2022
Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows... High Unreviewed
CVE-2016-2819 was published May 14, 2022
A buffer overflow in WebGL triggerable by web content, resulting in a potentially exploitable... Critical Unreviewed
CVE-2017-5459 was published May 14, 2022
A buffer overflow vulnerability while parsing "application/http-index-format" format content when... High Unreviewed
CVE-2017-5444 was published May 14, 2022
Memory safety bugs were reported in Firefox 52, Firefox ESR 45.8, Firefox ESR 52, and Thunderbird... Critical Unreviewed
CVE-2017-5429 was published May 14, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 49.0,... Critical Unreviewed
CVE-2016-5257 was published May 14, 2022
Buffer Overflow in pycrypto Critical
CVE-2013-7459 was published for pycrypto (pip) Dec 14, 2018
Heap-based buffer overflow in the Local Security Authority Subsystem Service (LSASS), as used in... High Unreviewed
CVE-2010-0820 was published May 2, 2022
Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows... High Unreviewed
CVE-2012-1891 was published May 13, 2022
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP... High Unreviewed
CVE-2011-1282 was published May 13, 2022
A heap memory corruption problem (use after free) can be triggered in libgetdata v0.10.0 when... Critical Unreviewed
CVE-2021-20204 was published May 24, 2022
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a... High Unreviewed
CVE-2024-21455 was published Oct 7, 2024
Buffer overflow in Image RAW in Apple Mac OS X 10.5.8 and 10.6.2 allows remote attackers to... High Unreviewed
CVE-2010-0037 was published May 2, 2022
Improper Restriction of Operations within the Bounds of a Memory Buffer in Apache Tomcat High
CVE-2016-6817 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
sunSUNQ
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database