Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

112 advisories

Loading
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0,... High Unreviewed
CVE-2020-8174 was published May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's... High Unreviewed
CVE-2019-5144 was published May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of... High Unreviewed
CVE-2019-5099 was published May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed
CVE-2019-9755 was published May 24, 2022
Integer underflow in the Lists_MakeMask() function in lists.c in ngIRCd before 0.8.2 allows... High Unreviewed
CVE-2005-0199 was published May 1, 2022
Videolan VLC prior to version 3.0.20 contains an Integer underflow that leads to an incorrect... High Unreviewed
CVE-2023-47360 was published Nov 13, 2023
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive... High Unreviewed
CVE-2019-12678 was published May 24, 2022
Named Pipe File System Elevation of Privilege Vulnerability. High Unreviewed
CVE-2022-22715 was published Feb 10, 2022
Integer underflow in untrusted High
CVE-2018-20989 was published for untrusted (Rust) Aug 25, 2021
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are... High Unreviewed
CVE-2023-26421 was published Apr 12, 2023
In MP4v2 2.0.0, there is an integer underflow (with resultant memory corruption) when parsing... High Unreviewed
CVE-2018-14325 was published May 13, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a... High Unreviewed
CVE-2019-14523 was published May 24, 2022
Multiple integer underflows in the x25_parse_facilities function in net/x25/x25_facilities.c in... High Unreviewed
CVE-2010-4164 was published May 13, 2022
Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel... High Unreviewed
CVE-2011-1770 was published May 13, 2022
Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux... High Unreviewed
CVE-2011-2497 was published May 13, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2022-24046 was published Feb 19, 2022
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed
CVE-2017-14796 was published May 17, 2022
chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and... High Unreviewed
CVE-2016-2316 was published May 17, 2022
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed
CVE-2016-10268 was published May 14, 2022
A CWE-191: Integer Underflow (Wrap or Wraparound) vulnerability exists that could cause a denial... High Unreviewed
CVE-2022-37301 was published Nov 22, 2022
In the function csr_update_fils_params_rso(), insufficient validation on a key length can result... High Unreviewed
CVE-2018-5850 was published May 14, 2022
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, -... High Unreviewed
CVE-2017-14496 was published May 14, 2022
An wrong logical check identified in the transferFrom function of a smart contract implementation... High Unreviewed
CVE-2018-12230 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11301 was published May 14, 2022
Improper input validation in Bluetooth Controller function can lead to possible memory corruption... High Unreviewed
CVE-2017-18170 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database