Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

100 advisories

Loading
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the... High Unreviewed
CVE-2020-36228 was published May 24, 2022
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the... High Unreviewed
CVE-2020-36221 was published May 24, 2022
In Arm software implementing the Armv8-M processors (all versions), the stack selection mechanism... High Unreviewed
CVE-2020-16273 was published May 24, 2022
u'Out of Bound issue in DSP services while processing received arguments due to improper... High Unreviewed
CVE-2020-11208 was published May 24, 2022
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0,... High Unreviewed
CVE-2020-8174 was published May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2020-1400 was published May 24, 2022
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU... High Unreviewed
CVE-2020-6096 was published May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's... High Unreviewed
CVE-2019-5144 was published May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of... High Unreviewed
CVE-2019-5099 was published May 24, 2022
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive... High Unreviewed
CVE-2019-12678 was published May 24, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a... High Unreviewed
CVE-2019-14523 was published May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed
CVE-2019-5459 was published May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed
CVE-2019-13602 was published May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed
CVE-2019-9755 was published May 24, 2022
An integer underflow may occur due to lack of check when received data length from... High Unreviewed
CVE-2017-18278 was published May 24, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed
CVE-2014-9883 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed
CVE-2017-7367 was published May 17, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3034 was published May 17, 2022
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed
CVE-2017-14796 was published May 17, 2022
chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and... High Unreviewed
CVE-2016-2316 was published May 17, 2022
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed
CVE-2016-10268 was published May 14, 2022
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, -... High Unreviewed
CVE-2017-14496 was published May 14, 2022
In the function csr_update_fils_params_rso(), insufficient validation on a key length can result... High Unreviewed
CVE-2018-5850 was published May 14, 2022
An wrong logical check identified in the transferFrom function of a smart contract implementation... High Unreviewed
CVE-2018-12230 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11301 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database