Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,292 advisories

Loading
Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the... Moderate Unreviewed
CVE-2010-4649 was published May 13, 2022
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4... Moderate Unreviewed
CVE-2010-3067 was published May 13, 2022
Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to... Moderate Unreviewed
CVE-2010-4162 was published May 13, 2022
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2... Moderate Unreviewed
CVE-2010-4157 was published May 13, 2022
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the ... Moderate Unreviewed
CVE-2010-4160 was published May 13, 2022
** DISPUTED ** Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo... High Unreviewed
CVE-2014-4608 was published May 13, 2022
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the... Moderate Unreviewed
CVE-2014-4656 was published May 13, 2022
The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the... Moderate Unreviewed
CVE-2014-4655 was published May 13, 2022
Integer overflow in the GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6... High Unreviewed
CVE-2012-1610 was published May 13, 2022
The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the... Moderate Unreviewed
CVE-2014-3144 was published May 13, 2022
Multiple integer overflows in the binary-search implementation in SpiderMonkey in Mozilla Firefox... High Unreviewed
CVE-2013-5619 was published May 13, 2022
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on... Moderate Unreviewed
CVE-2019-8354 was published May 13, 2022
Integer overflow in computing the required allocation size when instantiating a new javascript... High Unreviewed
CVE-2018-6065 was published May 13, 2022
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on... Critical Unreviewed
CVE-2018-5095 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10... High Unreviewed
CVE-2018-4249 was published May 13, 2022
Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a... High Unreviewed
CVE-2018-1000224 was published May 13, 2022
memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:item_free... High Unreviewed
CVE-2018-1000127 was published May 13, 2022
Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) implementation in the... High Unreviewed
CVE-2010-2959 was published May 13, 2022
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2... Moderate Unreviewed
CVE-2016-10507 was published May 13, 2022
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting... High Unreviewed
CVE-2016-9580 was published May 13, 2022
Qemu has a Buffer Overflow in rtl8139_do_receive in hw/net/rtl8139.c because an incorrect integer... High Unreviewed
CVE-2018-17958 was published May 13, 2022
Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6... High Unreviewed
CVE-2014-9862 was published May 13, 2022
An issue was discovered in apng2gif 1.7. There is an integer overflow resulting in a heap-based... High Unreviewed
CVE-2017-6960 was published May 13, 2022
Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-5499 was published May 13, 2022
Integer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3,... High Unreviewed
CVE-2012-1867 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database