Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

451 advisories

Loading
Memory corruption while receiving a message in Bus Socket Transport Server. Moderate Unreviewed
CVE-2023-33038 was published Jan 2, 2024
In battery, there is a possible information disclosure due to an integer overflow. This could... Moderate Unreviewed
CVE-2023-32881 was published Jan 2, 2024
Integer overflow vulnerability in landmarkCopyImageToNative of libFacePreProcessingjni.camera... Moderate Unreviewed
CVE-2023-42563 was published Dec 5, 2023
Integer overflow vulnerability in detectionFindFaceSupportMultiInstance of... Moderate Unreviewed
CVE-2023-42562 was published Dec 5, 2023
Integer overflow in some Intel(R) Aptio* V UEFI Firmware Integrator Tools may allow an... Moderate Unreviewed
CVE-2023-22305 was published Nov 14, 2023
In Secure Element, there is a possible out of bounds write due to an integer overflow. This could... Moderate Unreviewed
CVE-2023-21371 was published Oct 30, 2023
In the Security Element API, there is a possible out of bounds write due to an integer overflow.... Moderate Unreviewed
CVE-2023-21370 was published Oct 30, 2023
An integer overflow flaw was found in the Linux kernel. This issue leads to the kernel allocating... Moderate Unreviewed
CVE-2023-42752 was published Oct 13, 2023
An issue in GPAC GPAC v.2.2.1 and before allows a local attacker to cause a denial of service via... Moderate Unreviewed
CVE-2023-42298 was published Oct 12, 2023
LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial... Moderate Unreviewed
CVE-2023-40745 was published Oct 5, 2023
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c.... Moderate Unreviewed
CVE-2023-41175 was published Oct 5, 2023
In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2023-32829 was published Oct 2, 2023
In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2023-32828 was published Oct 2, 2023
In rpmb , there is a possible memory corruption due to a missing bounds check. This could lead to... Moderate Unreviewed
CVE-2023-32823 was published Oct 2, 2023
Integer Overflow or Wraparound in GitHub repository gpac/gpac prior to 2.3-DEV. Moderate Unreviewed
CVE-2023-4722 was published Sep 1, 2023
Integer Overflow vulnerability in qsvghandler.cpp in Qt qtsvg versions 5.15.1, 6.0.0, 6.0.2, and... Moderate Unreviewed
CVE-2021-28025 was published Aug 11, 2023
Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c in FFmpeg... Moderate Unreviewed
CVE-2021-28429 was published Aug 11, 2023
.eth registrar controller can shorten the duration of registered names Moderate
CVE-2023-38698 was published for @ensdomains/ens-contracts (npm) Aug 1, 2023
An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This... Moderate Unreviewed
CVE-2023-38560 was published Aug 1, 2023
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could... Moderate Unreviewed
CVE-2023-20756 was published Jul 4, 2023
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could... Moderate Unreviewed
CVE-2023-20755 was published Jul 4, 2023
snappy-java's Integer Overflow vulnerability in compress leads to DoS Moderate
CVE-2023-34454 was published for org.xerial.snappy:snappy-java (Maven) Jun 15, 2023
srmish-jfrog
snappy-java's Integer Overflow vulnerability in shuffle leads to DoS Moderate
CVE-2023-34453 was published for org.xerial.snappy:snappy-java (Maven) Jun 15, 2023
srmish-jfrog
A vulnerability was found in ImageMagick. This security flaw ouccers as an undefined behaviors of... Moderate Unreviewed
CVE-2023-34151 was published May 31, 2023
Buffer under-read in workerd Moderate
CVE-2023-2512 was published for workerd (npm) May 12, 2023
ubercomp
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database