Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,235 advisories

Loading
Integer overflow in the NTP daemon (NTPd) before 4.0 causes the NTP server to return the wrong... Moderate Unreviewed
CVE-2004-0657 was published Apr 29, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_read_file function,... Moderate Unreviewed
CVE-2022-28195 was published Apr 28, 2022
NVIDIA Jetson Linux Driver Package contains a vulnerability in the Cboot ext4_mount function,... Moderate Unreviewed
CVE-2022-28197 was published Apr 28, 2022
SumatraPDF 2.1.1/MuPDF 1.0 allows remote attackers to cause an Integer Overflow in the lex_number... Moderate Unreviewed
CVE-2012-5340 was published Apr 23, 2022
Integer bounds error in Vyper High
CVE-2022-24845 was published for vyper (pip) Apr 22, 2022
An Integer Overflow exists in WebKit in Google Chrome before Blink M11 in the macOS WebCore:... Moderate Unreviewed
CVE-2011-1298 was published Apr 22, 2022
An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts. Moderate Unreviewed
CVE-2010-4653 was published Apr 21, 2022
Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sat functions in... Critical Unreviewed
CVE-2009-0947 was published Apr 21, 2022
Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified... High Unreviewed
CVE-2002-2439 was published Apr 21, 2022
An exploitable code execution vulnerability exists in the file format parsing functionality of... High Unreviewed
CVE-2020-6099 was published Apr 19, 2022
There is an integer overflow vulnerability in dcraw. When the victim runs dcraw with a... High Unreviewed
CVE-2021-3624 was published Apr 19, 2022
stb_image.h v2.27 was discovered to contain an integer overflow via the function... Moderate Unreviewed
CVE-2022-28041 was published Apr 16, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
An integer overflow vulnerability exists in the fltSaveCMP functionality of Leadtools 22. A... High Unreviewed
CVE-2022-21154 was published Apr 15, 2022
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to... High Unreviewed
CVE-2022-20075 was published Apr 12, 2022
In preloader (usb), there is a possible out of bounds write due to an integer overflow. This... Moderate Unreviewed
CVE-2022-20069 was published Apr 12, 2022
Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds... High Unreviewed
CVE-2022-27833 was published Apr 12, 2022
GPAC mp4box 1.1.0-DEV-rev1663-g881c6a94a-master is vulnerable to Integer Overflow. Moderate Unreviewed
CVE-2022-27148 was published Apr 9, 2022
Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to... High Unreviewed
CVE-2022-0608 was published Apr 6, 2022
Buffer Overflow in yajl-ruby Moderate
CVE-2022-24795 was published for yajl-ruby (RubyGems) Apr 5, 2022
jhawthorn
In libstagefright, there is a possible out of bounds write due to an integer overflow. This could... High Unreviewed
CVE-2021-39759 was published Mar 31, 2022
An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a... High Unreviewed
CVE-2022-0998 was published Mar 31, 2022
NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this... High Unreviewed
CVE-2022-21821 was published Mar 30, 2022
Mojang Bedrock Dedicated Server 1.18.2 is affected by an integer overflow leading to a bound... Critical Unreviewed
CVE-2022-23884 was published Mar 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database