GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
451 advisories
Filter by severity
Integer overflow in cp-demangle.c in libiberty allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2016-4490
was published
May 17, 2022
In rndis_set_response of rndis.c, there is a possible out of bounds write due to an integer...
Moderate
Unreviewed
CVE-2022-20423
was published
Oct 12, 2022
The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote...
Moderate
Unreviewed
CVE-2017-8782
was published
May 17, 2022
Integer overflow in the vrend_create_shader function in vrend_renderer.c in virglrenderer before...
Moderate
Unreviewed
CVE-2017-6355
was published
May 17, 2022
There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed...
Moderate
Unreviewed
CVE-2021-3474
was published
May 24, 2022
Integer overflow in the uvm_map_isavail function in uvm/uvm_map.c in OpenBSD 5.9 allows local...
Moderate
Unreviewed
CVE-2016-6522
was published
May 17, 2022
Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2016-9824
was published
May 17, 2022
The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated...
Moderate
Unreviewed
CVE-2016-6177
was published
May 17, 2022
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause...
Moderate
Unreviewed
CVE-2017-5501
was published
May 17, 2022
Integer overflow in the demuxer function in libmpdemux/demux_gif.c in Mplayer allows remote...
Moderate
Unreviewed
CVE-2016-4352
was published
May 17, 2022
In ARM Trusted Firmware 1.2 and 1.3, a malformed firmware update SMC can result in copying...
Moderate
Unreviewed
CVE-2016-10319
was published
May 17, 2022
Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a...
Moderate
Unreviewed
CVE-2016-9557
was published
May 17, 2022
An integer overflow / wraparound vulnerability [CWE-190] in FortiSwitch 7.0.2 and below, 6.4.9...
Moderate
Unreviewed
CVE-2021-42755
was published
Jul 19, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6)....
Moderate
Unreviewed
CVE-2021-33439
was published
Jul 27, 2022
Integer overflow in the OZDocument::parseElement function in Apple Motion 5.0.7 allows remote...
Moderate
Unreviewed
CVE-2013-6114
was published
May 17, 2022
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization...
Moderate
Unreviewed
CVE-2022-4172
was published
Nov 29, 2022
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka...
Moderate
Unreviewed
CVE-2015-2305
was published
May 14, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_mount function,...
Moderate
Unreviewed
CVE-2022-28197
was published
Apr 28, 2022
In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read...
Moderate
Unreviewed
CVE-2022-20393
was published
Sep 14, 2022
TensorFlow vulnerable to Int overflow in `RaggedRangeOp`
Moderate
CVE-2022-35940
was published
for
tensorflow
(pip)
Sep 16, 2022
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames.
Moderate
Unreviewed
CVE-2022-25315
was published
Feb 19, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization...
Moderate
Unreviewed
CVE-2022-29030
was published
May 21, 2022
Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.2.
Moderate
Unreviewed
CVE-2022-1754
was published
May 21, 2022
In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an...
Moderate
Unreviewed
CVE-2020-0181
was published
May 24, 2022
In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer...
Moderate
Unreviewed
CVE-2020-0198
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API