Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,366 advisories

Loading
An integer overflow vulnerability exists in the Compound Document Binary File format parser of... High Unreviewed
CVE-2024-36474 was published Oct 3, 2024
An integer overflow vulnerability exists in the Compound Document Binary File format parser of v1... High Unreviewed
CVE-2024-42415 was published Oct 3, 2024
In the Linux kernel, the following vulnerability has been resolved: cdrom: rearrange... High Unreviewed
CVE-2024-42136 was published Jul 30, 2024
Integer overflow in Skia in Google Chrome prior to 129.0.6668.70 allowed a remote attacker to... High Unreviewed
CVE-2024-9123 was published Sep 25, 2024
A Business Logic vulnerability in Shopkit 1.0 allows an attacker to add products with negative... High Unreviewed
CVE-2023-45854 was published Sep 16, 2024
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code... High Unreviewed
CVE-2023-5869 was published Dec 10, 2023
PyCA Cryptography symmetrically encrypting large values can lead to integer overflow High
CVE-2020-36242 was published for cryptography (pip) Feb 10, 2021
pgx SQL Injection via Protocol Message Size Overflow High
CVE-2024-27304 was published for github.com/jackc/pgx (Go) Mar 4, 2024
paul-gerste-sonarsource
pgproto3 SQL Injection via Protocol Message Size Overflow High
GHSA-7jwh-3vrq-q3m8 was published for github.com/jackc/pgproto3 (Go) Mar 4, 2024
paul-gerste-sonarsource
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-34121 was published Sep 13, 2024
An integer overflow was discovered in pdf_read_new_xref_section in pdf/pdf-xref.c in Artifex... High Unreviewed
CVE-2017-15587 was published May 14, 2022
Windows libarchive Remote Code Execution Vulnerability High Unreviewed
CVE-2024-43495 was published Sep 10, 2024
The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and... High Unreviewed
CVE-2023-22436 was published Mar 10, 2023
Memory corruption while calculating total metadata size when a very high reserved size is... High Unreviewed
CVE-2024-33035 was published Sep 2, 2024
An issue was discovered in libexpat before 2.6.3. dtdCopy in xmlparse.c can have an integer... High Unreviewed
CVE-2024-45491 was published Aug 30, 2024
An issue was discovered in libexpat before 2.6.3. nextScaffoldPart in xmlparse.c can have an... High Unreviewed
CVE-2024-45492 was published Aug 30, 2024
Integer overflow in TFLite memory allocation High
CVE-2021-29605 was published for tensorflow (pip) May 21, 2021
TensorFlow has segfault in array_ops.upper_bound High
CVE-2023-33976 was published for tensorflow (pip) Jul 30, 2024
dmc1778
In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in... High Unreviewed
CVE-2024-40994 was published Jul 12, 2024
In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer... High Unreviewed
CVE-2024-41000 was published Jul 12, 2024
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an... High Unreviewed
CVE-2024-31333 was published Aug 16, 2024
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible... High Unreviewed
CVE-2024-34740 was published Aug 16, 2024
InDesign Desktop versions ID19.4, ID18.5.2 and earlier are affected by an Integer Overflow or... High Unreviewed
CVE-2024-41851 was published Aug 14, 2024
Windows Graphics Component Remote Code Execution Vulnerability High Unreviewed
CVE-2023-21823 was published Feb 14, 2023
InCopy versions 18.5.2, 19.4 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2024-41858 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database