Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,984
Maven
5,000+
npm
3,701
NuGet
657
pip
3,325
Pub
11
RubyGems
882
Rust
835
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

33 advisories

Loading
FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in... Moderate Unreviewed
CVE-2024-31585 was published Apr 17, 2024
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed
CVE-2024-23849 was published Jan 23, 2024
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed
CVE-2024-1441 was published Mar 11, 2024
In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could... Moderate Unreviewed
CVE-2010-5331 was published Apr 21, 2022
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers... Moderate Unreviewed
CVE-2002-1745 was published Apr 30, 2022
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially... Moderate Unreviewed
CVE-2003-0625 was published Apr 29, 2022
Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2002-1721 was published Apr 30, 2022
Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of... Moderate Unreviewed
CVE-1999-1568 was published Apr 30, 2022
Windows Kernel Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-30155 was published Jun 16, 2022
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3... Moderate Unreviewed
CVE-2011-1027 was published May 17, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All... Moderate Unreviewed
CVE-2020-27736 was published May 24, 2022
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2... Moderate Unreviewed
CVE-2007-2052 was published May 1, 2022
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c.... Moderate Unreviewed
CVE-2022-3821 was published Nov 9, 2022
A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master... Moderate Unreviewed
CVE-2022-36354 was published Dec 23, 2022
Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV. Moderate Unreviewed
CVE-2023-0818 was published Feb 14, 2023
Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache... Moderate Unreviewed
CVE-2005-1268 was published May 1, 2022
Off-by-one error in the pci_read function in the ACPI PCI hotplug interface (hw/acpi/pcihp.c) in... Moderate Unreviewed
CVE-2014-5388 was published May 13, 2022
A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr... Moderate Unreviewed
CVE-2017-2618 was published May 13, 2022
Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local... Moderate Unreviewed
CVE-2011-2695 was published May 13, 2022
An Off-by-one Error occurs in cmr113_decode of rtl_433 21.12 when decoding a crafted file. Moderate Unreviewed
CVE-2022-25051 was published Mar 3, 2022
An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while... Moderate Unreviewed
CVE-2021-3930 was published Feb 19, 2022
axTLS version 1.5.3 has a coding error in the ASN.1 parser resulting in the year (19)50 of... Moderate Unreviewed
CVE-2017-1000416 was published May 13, 2022
Off-by-one error in Google V8, as used in Google Chrome before 14.0.835.163, allows remote... Moderate Unreviewed
CVE-2011-2852 was published May 13, 2022
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization... Moderate Unreviewed
CVE-2021-44007 was published Dec 15, 2021
QEMU (aka Quick Emulator) built with the Rocker switch emulation support is vulnerable to an off... Moderate Unreviewed
CVE-2015-8701 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database