Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,240 advisories

Loading
There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a... High Unreviewed
CVE-2021-3624 was published Apr 19, 2022
Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sat functions in... Critical Unreviewed
CVE-2009-0947 was published Apr 21, 2022
An integer overflow vulnerability exists in the fltSaveCMP functionality of Leadtools 22. A... High Unreviewed
CVE-2022-21154 was published Apr 15, 2022
An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore:... Moderate Unreviewed
CVE-2011-1298 was published Apr 22, 2022
Integer bounds error in Vyper High
CVE-2022-24845 was published for vyper (pip) Apr 22, 2022
AttesterSlashing number overflow High
CVE-2022-29219 was published for @chainsafe/lodestar (npm) May 24, 2022
Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to... High Unreviewed
CVE-2010-0129 was published May 2, 2022
In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c ... Moderate Unreviewed
CVE-2022-29824 was published May 4, 2022
An exploitable integer overflow exists in the Image loading functionality of the Blender open... High Unreviewed
CVE-2017-2918 was published May 13, 2022
An exploitable integer overflow vulnerability exists in the tiff_image_parse functionality of Gdk... High Unreviewed
CVE-2017-2870 was published May 13, 2022
An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source... High Unreviewed
CVE-2017-2908 was published May 13, 2022
Integer overflow in `SpaceToBatchND` Moderate
CVE-2022-29203 was published for tensorflow (pip) May 24, 2022
An exploitable integer overflow exists in the DPX loading functionality of the Blender open... High Unreviewed
CVE-2017-2902 was published May 13, 2022
Integer Overflow or Wraparound in JBCrypt Moderate
CVE-2015-0886 was published for org.mindrot:jbcrypt (Maven) May 13, 2022
Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in... Moderate Unreviewed
CVE-2015-1283 was published May 13, 2022
An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of... Critical Unreviewed
CVE-2017-2921 was published May 13, 2022
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing... Critical Unreviewed
CVE-2017-2892 was published May 13, 2022
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that... Critical Unreviewed
CVE-2017-5340 was published May 14, 2022
Integer overflow in the php_filter_encode_url function in ext/filter/sanitizing_filters.c in PHP... Critical Unreviewed
CVE-2016-4345 was published May 17, 2022
An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4.... High Unreviewed
CVE-2019-5052 was published May 24, 2022
An integer overflow during the parsing of XML using the Expat library. This vulnerability affects... Critical Unreviewed
CVE-2016-9063 was published May 14, 2022
An exploitable integer overflow exists in the bmp loading functionality of the Blender open... High Unreviewed
CVE-2017-2905 was published May 13, 2022
An exploitable integer overflow exists in the DPX loading functionality of the Blender open... High Unreviewed
CVE-2017-2903 was published May 13, 2022
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open... High Unreviewed
CVE-2017-2904 was published May 13, 2022
An exploitable integer overflow exists in the animation playing functionality of the Blender open... High Unreviewed
CVE-2017-2906 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database