Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,219 advisories

Loading
FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c. Moderate Unreviewed
CVE-2025-23022 was published Jan 10, 2025
FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based... Critical Unreviewed
CVE-2025-23016 was published Jan 10, 2025
An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker... Critical Unreviewed
CVE-2024-40765 was published Jan 9, 2025
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 2 of 2). Critical Unreviewed
CVE-2023-33864 was published Jun 7, 2023
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 1 of 2). Critical Unreviewed
CVE-2023-33863 was published Jun 7, 2023
In the Linux kernel, the following vulnerability has been resolved: um: Fix potential integer... Moderate Unreviewed
CVE-2024-53145 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential... Moderate Unreviewed
CVE-2024-53146 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: svcrdma: Address an integer... Moderate Unreviewed
CVE-2024-53151 was published Dec 24, 2024
FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an... Moderate Unreviewed
CVE-2024-36613 was published Jan 3, 2025
Integer overflow in Layout in Google Chrome prior to 129.0.6668.89 allowed a remote attacker to... High Unreviewed
CVE-2024-7025 was published Nov 27, 2024
Windows Sysmain Service Elevation of Privilege High Unreviewed
CVE-2023-35644 was published Dec 12, 2023
Integer overflow vulnerability exists in SimplCommerce at commit... Critical Unreviewed
CVE-2024-50944 was published Dec 27, 2024
Dell ECS, versions prior to 3.8.1.3 contains an arithmetic overflow vulnerability exists in... High Unreviewed
CVE-2024-51540 was published Dec 26, 2024
tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has... Moderate Unreviewed
CVE-2019-17546 was published May 24, 2022
Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before... High Unreviewed
CVE-2012-5054 was published May 14, 2022
The vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are... High Unreviewed
CVE-2011-1823 was published May 17, 2022
Integer overflow in the fb_mmap function in drivers/video/fbmem.c in the Linux kernel before 3.8... Moderate Unreviewed
CVE-2013-2596 was published May 17, 2022
In oemCallback of ril.cpp, there is a possible out of bounds write due to an integer overflow... High Unreviewed
CVE-2018-9404 was published Dec 5, 2024
In intr_data_copy_cb of btif_hd.cc, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2018-9482 was published Nov 20, 2024
In bta_hd_set_report_act of bta_hd_act.cc, there is a possible out-of-bounds read due to an... Moderate Unreviewed
CVE-2018-9481 was published Nov 20, 2024
In String16 of String16.cpp, there is a possible out of bounds write due to an integer overflow.... High Unreviewed
CVE-2017-13323 was published Nov 28, 2024
Product: AndroidVersions: Android SoCAndroid ID: A-277775870 Critical Unreviewed
CVE-2021-0701 was published Jun 15, 2023
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible... High Unreviewed
CVE-2024-34740 was published Aug 16, 2024
pgx SQL Injection via Protocol Message Size Overflow High
CVE-2024-27304 was published for github.com/jackc/pgx (Go) Mar 4, 2024
paul-gerste-sonarsource
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow High
CVE-2024-32655 was published for Npgsql (NuGet) May 9, 2024
paul-gerste-sonarsource NinoFloris
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database