Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,232 advisories

Loading
FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of... Critical Unreviewed
CVE-2024-35366 was published Nov 29, 2024
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows... Moderate Unreviewed
CVE-2024-36616 was published Nov 29, 2024
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security... Moderate Unreviewed
CVE-2024-35369 was published Nov 29, 2024
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows... Moderate Unreviewed
CVE-2024-36619 was published Nov 29, 2024
FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder. Moderate Unreviewed
CVE-2024-36617 was published Nov 29, 2024
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for... Moderate Unreviewed
CVE-2024-36618 was published Nov 29, 2024
nodemcu before v3.0.0-release_20240225 was discovered to contain an integer overflow via the... Critical Unreviewed
CVE-2024-36671 was published Nov 29, 2024
In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to... Moderate Unreviewed
CVE-2018-9352 was published Nov 28, 2024
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.... High Unreviewed
CVE-2017-13323 was published Nov 28, 2024
Integer overflow in Layout in Google Chrome prior to 129.0.6668.89 allowed a remote attacker to... High Unreviewed
CVE-2024-7025 was published Nov 27, 2024
An issue was discovered in MBed OS 6.16.0. During processing of HCI packets, the software... High Unreviewed
CVE-2024-48983 was published Nov 20, 2024
In intr_data_copy_cb of btif_hd.cc, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2018-9482 was published Nov 20, 2024
In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an... Moderate Unreviewed
CVE-2018-9481 was published Nov 20, 2024
In xmlMemStrdupLoc of xmlmemory.c, there is a possible out-of-bounds write due to an integer... High Unreviewed
CVE-2018-9472 was published Nov 20, 2024
ASA-2024-010: cosmossdk.io/math: Mismatched bit-length validation in sdk.Int and sdk.Dec can lead to panic High
GHSA-7225-m954-23v7 was published for cosmossdk.io/math (Go) Nov 20, 2024
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a... High Unreviewed
CVE-2018-9366 was published Nov 19, 2024
In SMF_ParseMetaEvent of eas_smf.c, there is a possible integer overflow. This could lead to... High Unreviewed
CVE-2018-9348 was published Nov 19, 2024
In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: avoid... Moderate Unreviewed
CVE-2024-50270 was published Nov 19, 2024
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42384 was published Nov 18, 2024
Bitcoin Core before 22.0 has a CAddrMan nIdCount integer overflow and resultant assertion failure... Moderate Unreviewed
CVE-2024-52919 was published Nov 18, 2024
Bitcoin Core before 0.21.0 allows a network split that is resultant from an integer overflow ... High Unreviewed
CVE-2024-52912 was published Nov 18, 2024
A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an... High Unreviewed
CVE-2022-20685 was published Nov 15, 2024
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in... High Unreviewed
CVE-2024-10394 was published Nov 14, 2024
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated... Low Unreviewed
CVE-2024-21783 was published Nov 13, 2024
In filterMask of SkEmbossMaskFilter.cpp, there is a possible out of bounds write due to an... High Unreviewed
CVE-2024-43091 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database