Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,291 advisories

Loading
Integer overflow in the _isBidi function in bidi.c in Libidn2 before 2.0.4 allows remote... Critical Unreviewed
CVE-2017-14061 was published May 13, 2022
Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch... Moderate Unreviewed
CVE-2015-4645 was published May 13, 2022
Multiple integer overflows in audioop.c in the audioop module in Python 2.6, 2.7, 3.1, and 3.2... Moderate Unreviewed
CVE-2010-1634 was published May 13, 2022
The get_count function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31,... High Unreviewed
CVE-2018-18483 was published May 13, 2022
The elf_object_p function in elfcode.h in the Binary File Descriptor (BFD) library (aka libbfd),... High Unreviewed
CVE-2018-6323 was published May 13, 2022
The parse_die function in dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2018-7568 was published May 13, 2022
In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section()... High Unreviewed
CVE-2018-6543 was published May 13, 2022
dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils... Moderate Unreviewed
CVE-2018-7569 was published May 13, 2022
The display_debug_ranges function in dwarf.c in GNU Binutils 2.30 allows remote attackers to... High Unreviewed
CVE-2018-7643 was published May 13, 2022
The sellBuyerTokens function of a smart contract implementation for SwapToken, an Ethereum token,... High Unreviewed
CVE-2018-13203 was published May 13, 2022
In MP4v2 2.0.0, there is an integer overflow (with resultant memory corruption) when resizing... High Unreviewed
CVE-2018-14326 was published May 13, 2022
An integer overflow vulnerability exists in the function multipleTransfer of Neo Genesis Token ... High Unreviewed
CVE-2018-14006 was published May 13, 2022
The mintToken function of a smart contract implementation for MyYLC, an Ethereum token, has an... High Unreviewed
CVE-2018-13781 was published May 13, 2022
An integer overflow vulnerability exists in the function transferAny of Malaysia coins (Xmc), an... High Unreviewed
CVE-2018-14005 was published May 13, 2022
The mintToken function of a smart contract implementation for MoneyChainNet (MCN), an Ethereum... High Unreviewed
CVE-2018-13760 was published May 13, 2022
Integer overflow in layout.c++ in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1... Critical Unreviewed
CVE-2015-2310 was published May 13, 2022
An integer overflow in the unprotected distributeToken function of a smart contract... High Unreviewed
CVE-2018-11561 was published May 13, 2022
Integer overflow in the ISO9660 writer in libarchive before 3.2.1 allows remote attackers to... High Unreviewed
CVE-2016-6250 was published May 13, 2022
Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-5844 was published May 13, 2022
The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to... High Unreviewed
CVE-2018-17088 was published May 13, 2022
A malicious client which is allowed to send very large amounts of traffic (billions of packets)... High Unreviewed
CVE-2018-5733 was published May 13, 2022
Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squashfs 4.2 and... Moderate Unreviewed
CVE-2012-4025 was published May 13, 2022
The mintToken function of a smart contract implementation for FuturXe, an Ethereum token, has an... High Unreviewed
CVE-2018-13718 was published May 13, 2022
The mintToken function of a smart contract implementation for FansChainToken, an Ethereum token,... High Unreviewed
CVE-2018-13474 was published May 13, 2022
The mint function of a smart contract implementation for Link Platform (LNK), an Ethereum ERC20... High Unreviewed
CVE-2018-13041 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database