Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

451 advisories

Loading
Integer overflow in cp-demangle.c in libiberty allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2016-4490 was published May 17, 2022
In rndis_set_response of rndis.c, there is a possible out of bounds write due to an integer... Moderate Unreviewed
CVE-2022-20423 was published Oct 12, 2022
The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote... Moderate Unreviewed
CVE-2017-8782 was published May 17, 2022
Integer overflow in the vrend_create_shader function in vrend_renderer.c in virglrenderer before... Moderate Unreviewed
CVE-2017-6355 was published May 17, 2022
There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed... Moderate Unreviewed
CVE-2021-3474 was published May 24, 2022
Integer overflow in the uvm_map_isavail function in uvm/uvm_map.c in OpenBSD 5.9 allows local... Moderate Unreviewed
CVE-2016-6522 was published May 17, 2022
Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-9824 was published May 17, 2022
The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated... Moderate Unreviewed
CVE-2016-6177 was published May 17, 2022
Integer overflow in libjasper/jpc/jpc_tsfb.c in JasPer 1.900.17 allows remote attackers to cause... Moderate Unreviewed
CVE-2017-5501 was published May 17, 2022
Integer overflow in the demuxer function in libmpdemux/demux_gif.c in Mplayer allows remote... Moderate Unreviewed
CVE-2016-4352 was published May 17, 2022
In ARM Trusted Firmware 1.2 and 1.3, a malformed firmware update SMC can result in copying... Moderate Unreviewed
CVE-2016-10319 was published May 17, 2022
Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-9557 was published May 17, 2022
An integer overflow / wraparound vulnerability [CWE-190] in FortiSwitch 7.0.2 and below, 6.4.9... Moderate Unreviewed
CVE-2021-42755 was published Jul 19, 2022
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6).... Moderate Unreviewed
CVE-2021-33439 was published Jul 27, 2022
Integer overflow in the OZDocument::parseElement function in Apple Motion 5.0.7 allows remote... Moderate Unreviewed
CVE-2013-6114 was published May 17, 2022
An integer overflow and buffer overflow issues were found in the ACPI Error Record Serialization... Moderate Unreviewed
CVE-2022-4172 was published Nov 29, 2022
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka... Moderate Unreviewed
CVE-2015-2305 was published May 14, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_mount function,... Moderate Unreviewed
CVE-2022-28197 was published Apr 28, 2022
In extract3GPPGlobalDescriptions of TextDescriptions.cpp, there is a possible out of bounds read... Moderate Unreviewed
CVE-2022-20393 was published Sep 14, 2022
TensorFlow vulnerable to Int overflow in `RaggedRangeOp` Moderate
CVE-2022-35940 was published for tensorflow (pip) Sep 16, 2022
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Moderate Unreviewed
CVE-2022-25315 was published Feb 19, 2022
A vulnerability has been identified in JT2Go (All versions < V13.3.0.3), Teamcenter Visualization... Moderate Unreviewed
CVE-2022-29030 was published May 21, 2022
Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.2. Moderate Unreviewed
CVE-2022-1754 was published May 21, 2022
In exif_data_load_data_thumbnail of exif-data.c, there is a possible denial of service due to an... Moderate Unreviewed
CVE-2020-0181 was published May 24, 2022
In exif_data_load_data_content of exif-data.c, there is a possible UBSAN abort due to an integer... Moderate Unreviewed
CVE-2020-0198 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database