Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

282 advisories

Loading
LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow... Critical Unreviewed
CVE-2018-17897 was published May 14, 2022
While generating trusted application id, An integer overflow can occur giving the trusted... Critical Unreviewed
CVE-2016-10502 was published May 14, 2022
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126... Critical Unreviewed
CVE-2018-1000810 was published May 14, 2022
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl... Critical Unreviewed
CVE-2018-18928 was published May 14, 2022
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when... Critical Unreviewed
CVE-2018-17157 was published May 14, 2022
Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3... Critical Unreviewed
CVE-2016-5636 was published May 14, 2022
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka... Critical Unreviewed
CVE-2016-7568 was published May 14, 2022
Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can... Critical Unreviewed
CVE-2018-10244 was published May 14, 2022
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The... Critical Unreviewed
CVE-2018-14618 was published May 14, 2022
** DISPUTED ** lighttpd before 1.4.54 has a signed integer overflow, which might allow remote... Critical Unreviewed
CVE-2019-11072 was published May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CDataFileReader::Open() in engine/shared... Critical Unreviewed
CVE-2019-10879 was published May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load() in engine/shared/map.cpp that... Critical Unreviewed
CVE-2019-10877 was published May 14, 2022
Integer overflow in the Post Office Agent in Novell GroupWise before 2014 R2 Service Pack 1 Hot... Critical Unreviewed
CVE-2016-5762 was published May 14, 2022
vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell... Critical Unreviewed
CVE-2017-5953 was published May 14, 2022
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.*... Critical Unreviewed
CVE-2018-1126 was published May 14, 2022
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a... Critical Unreviewed
CVE-2018-19199 was published May 14, 2022
An issue was discovered in vcSetXCutTextProc() in VNConsole.c in LinuxVNC and VNCommand from the... Critical Unreviewed
CVE-2018-7226 was published May 14, 2022
PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and... Critical Unreviewed
CVE-2017-9120 was published May 14, 2022
libautotrace.a in AutoTrace 0.31.1 has a "negative-size-param" issue in the ReadImage function in... Critical Unreviewed
CVE-2017-9196 was published May 13, 2022
CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the... Critical Unreviewed
CVE-2017-1000158 was published May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function... Critical Unreviewed
CVE-2017-12177 was published May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S... Critical Unreviewed
CVE-2017-12179 was published May 13, 2022
An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area,... Critical Unreviewed
CVE-2017-9282 was published May 13, 2022
Integer overflow in the _isBidi function in bidi.c in Libidn2 before 2.0.4 allows remote... Critical Unreviewed
CVE-2017-14061 was published May 13, 2022
Integer overflow in layout.c++ in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1... Critical Unreviewed
CVE-2015-2310 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database