Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,315 advisories

Loading
Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.1-DEV. High Unreviewed
CVE-2022-2454 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using lzo decompression. Integer overflow in... High Unreviewed
CVE-2022-1924 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using HEADERSTRIP decompression. Integer overflow... High Unreviewed
CVE-2022-1925 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using zlib decompression. Integer overflow in... High Unreviewed
CVE-2022-1922 was published Jul 20, 2022
DOS / potential heap overwrite in mkv demuxing using bzip decompression. Integer overflow in... High Unreviewed
CVE-2022-1923 was published Jul 20, 2022
Integer overflow in avidemux element in gst_avi_demux_invert function which allows a heap... High Unreviewed
CVE-2022-1921 was published Jul 20, 2022
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high... High Unreviewed
CVE-2022-31600 was published Jul 5, 2022
Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0. High Unreviewed
CVE-2022-2285 was published Jul 3, 2022
A vulnerability was found in ImageMagick, causing an outside the range of representable values of... High Unreviewed
CVE-2022-32545 was published Jun 17, 2022
A vulnerability was found in ImageMagick, causing an outside the range of representable values of... High Unreviewed
CVE-2022-32546 was published Jun 17, 2022
An exploitable vulnerability exists in the object stream parsing functionality of Nitro Software,... High Unreviewed
CVE-2020-6113 was published May 24, 2022
Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding... High Unreviewed
CVE-2021-21847 was published May 24, 2022
An arbitrary code execution vulnerability exists in the rendering functionality of Nitro Software... High Unreviewed
CVE-2020-6116 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21848 was published May 24, 2022
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel’s tz_map_shared_mem function where... High Unreviewed
CVE-2021-34382 was published May 24, 2022
Multiple exploitable integer truncation vulnerabilities exist within the MPEG-4 decoding... High Unreviewed
CVE-2021-21862 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21834 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21850 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21849 was published May 24, 2022
An exploitable integer overflow vulnerability exists in the PlanMaker document parsing... High Unreviewed
CVE-2020-13579 was published May 24, 2022
Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding... High Unreviewed
CVE-2021-21846 was published May 24, 2022
Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding... High Unreviewed
CVE-2021-21844 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21836 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21840 was published May 24, 2022
An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of... High Unreviewed
CVE-2021-21835 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database