GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
282 advisories
Filter by severity
LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow...
Critical
Unreviewed
CVE-2018-17897
was published
May 14, 2022
While generating trusted application id, An integer overflow can occur giving the trusted...
Critical
Unreviewed
CVE-2016-10502
was published
May 14, 2022
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126...
Critical
Unreviewed
CVE-2018-1000810
was published
May 14, 2022
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl...
Critical
Unreviewed
CVE-2018-18928
was published
May 14, 2022
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when...
Critical
Unreviewed
CVE-2018-17157
was published
May 14, 2022
Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3...
Critical
Unreviewed
CVE-2016-5636
was published
May 14, 2022
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka...
Critical
Unreviewed
CVE-2016-7568
was published
May 14, 2022
Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can...
Critical
Unreviewed
CVE-2018-10244
was published
May 14, 2022
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The...
Critical
Unreviewed
CVE-2018-14618
was published
May 14, 2022
** DISPUTED ** lighttpd before 1.4.54 has a signed integer overflow, which might allow remote...
Critical
Unreviewed
CVE-2019-11072
was published
May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CDataFileReader::Open() in engine/shared...
Critical
Unreviewed
CVE-2019-10879
was published
May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load() in engine/shared/map.cpp that...
Critical
Unreviewed
CVE-2019-10877
was published
May 14, 2022
Integer overflow in the Post Office Agent in Novell GroupWise before 2014 R2 Service Pack 1 Hot...
Critical
Unreviewed
CVE-2016-5762
was published
May 14, 2022
vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell...
Critical
Unreviewed
CVE-2017-5953
was published
May 14, 2022
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.*...
Critical
Unreviewed
CVE-2018-1126
was published
May 14, 2022
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a...
Critical
Unreviewed
CVE-2018-19199
was published
May 14, 2022
An issue was discovered in vcSetXCutTextProc() in VNConsole.c in LinuxVNC and VNCommand from the...
Critical
Unreviewed
CVE-2018-7226
was published
May 14, 2022
PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and...
Critical
Unreviewed
CVE-2017-9120
was published
May 14, 2022
libautotrace.a in AutoTrace 0.31.1 has a "negative-size-param" issue in the ReadImage function in...
Critical
Unreviewed
CVE-2017-9196
was published
May 13, 2022
CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the...
Critical
Unreviewed
CVE-2017-1000158
was published
May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function...
Critical
Unreviewed
CVE-2017-12177
was published
May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S...
Critical
Unreviewed
CVE-2017-12179
was published
May 13, 2022
An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area,...
Critical
Unreviewed
CVE-2017-9282
was published
May 13, 2022
Integer overflow in the _isBidi function in bidi.c in Libidn2 before 2.0.4 allows remote...
Critical
Unreviewed
CVE-2017-14061
was published
May 13, 2022
Integer overflow in layout.c++ in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1...
Critical
Unreviewed
CVE-2015-2310
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API