Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,340
Erlang
31
GitHub Actions
22
Go
2,101
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
885
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,235 advisories

Loading
Micrium OS Versions 5.10.1 and prior are vulnerable to integer wrap-around in functions... Moderate Unreviewed
CVE-2021-27411 was published May 4, 2022
eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in... Critical Unreviewed
CVE-2021-27417 was published May 4, 2022
NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc... Critical Unreviewed
CVE-2021-27421 was published May 4, 2022
RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc... Critical Unreviewed
CVE-2021-27427 was published May 4, 2022
ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc ... Critical Unreviewed
CVE-2021-27431 was published May 4, 2022
uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc... Critical Unreviewed
CVE-2021-27419 was published May 4, 2022
Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc.... Critical Unreviewed
CVE-2021-27425 was published May 4, 2022
ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function... Critical Unreviewed
CVE-2021-27433 was published May 4, 2022
TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc... Critical Unreviewed
CVE-2021-27439 was published May 4, 2022
ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in malloc_wrapper function,... Critical Unreviewed
CVE-2021-27435 was published May 4, 2022
In ion, there is a possible use after free due to an integer overflow. This could lead to local... High Unreviewed
CVE-2022-21743 was published May 4, 2022
In subtitle service, there is a possible application crash due to an integer overflow. This could... Moderate Unreviewed
CVE-2022-20107 was published May 4, 2022
Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1)... Moderate Unreviewed
CVE-2007-3387 was published May 3, 2022
An integer overflow vulnerability was found in FFmpeg 5.0.1 and in previous versions in... Moderate Unreviewed
CVE-2022-1475 was published May 3, 2022
Integer overflow in rgbimgmodule.c in the rgbimg module in Python 2.5 allows remote attackers to... High Unreviewed
CVE-2010-1449 was published May 2, 2022
Integer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to... High Unreviewed
CVE-2010-0130 was published May 2, 2022
Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to... High Unreviewed
CVE-2010-0129 was published May 2, 2022
Integer overflow in the read_channel_data function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7... High Unreviewed
CVE-2009-3909 was published May 2, 2022
Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in... High Unreviewed
CVE-2009-2949 was published May 2, 2022
Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might... High Unreviewed
CVE-2009-1570 was published May 2, 2022
Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute... High Unreviewed
CVE-2009-0946 was published May 2, 2022
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in... High Unreviewed
CVE-2009-0723 was published May 2, 2022
Integer overflow in the gst_vorbis_tag_add_coverart function (gst-libs/gst/tag/gstvorbistag.c) in... High Unreviewed
CVE-2009-0586 was published May 2, 2022
Integer overflow in Memory Manager in Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2,... High Unreviewed
CVE-2008-4036 was published May 2, 2022
Integer overflow in the REPT function in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3,... High Unreviewed
CVE-2008-4019 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database