Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
An integer overflow was addressed with improved input validation. This issue is fixed in tvOS 17... High Unreviewed
CVE-2024-27833 was published Jun 10, 2024
SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy... High Unreviewed
CVE-2020-14409 was published May 24, 2022
HTTP/2 HPACK integer overflow and buffer allocation High
CVE-2023-36478 was published for org.eclipse.jetty.http2:http2-hpack (Maven) Oct 10, 2023
samalws-tob kaoudis
smichaels-tob joakime
Microsoft Event Trace Log File Parsing Remote Code Execution Vulnerability High Unreviewed
CVE-2024-30072 was published Jun 11, 2024
Windows Kernel Elevation of Privilege Vulnerability High Unreviewed
CVE-2024-30064 was published Jun 11, 2024
GStreamer EXIF Metadata Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-4453 was published May 22, 2024
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or... High Unreviewed
CVE-2023-6478 was published Dec 13, 2023
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function... High Unreviewed
CVE-2023-43787 was published Oct 10, 2023
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow High
CVE-2024-32655 was published for Npgsql (NuGet) May 9, 2024
paul-gerste-sonarsource NinoFloris
Unified Automation UaGateway Certificate Parsing Integer Overflow Denial-of-Service Vulnerability... High Unreviewed
CVE-2023-41185 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40474 was published May 3, 2024
GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-44443 was published May 3, 2024
GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-37327 was published May 3, 2024
GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-40475 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38104 was published May 3, 2024
GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-38103 was published May 3, 2024
Memory corruption while using the UIM diag command to get the operators name. High Unreviewed
CVE-2023-33018 was published Dec 5, 2023
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along... High Unreviewed
CVE-2023-21630 was published Apr 13, 2023
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during... High Unreviewed
CVE-2022-40530 was published Mar 10, 2023
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic... High Unreviewed
CVE-2022-33296 was published Apr 13, 2023
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39270 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of... High Unreviewed
CVE-2023-38621 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39275 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of... High Unreviewed
CVE-2023-39274 was published Jan 8, 2024
Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of... High Unreviewed
CVE-2023-38618 was published Jan 8, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database