Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,291 advisories

Loading
An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality... High Unreviewed
CVE-2017-2820 was published May 13, 2022
An exploitable denial of service vulnerability exists within the handling of security data in... Moderate Unreviewed
CVE-2017-2837 was published May 13, 2022
An exploitable denial of service vulnerability exists within the handling of challenge packets in... Moderate Unreviewed
CVE-2017-2838 was published May 13, 2022
An exploitable integer overflow vulnerability exists in the tiff_image_parse functionality of Gdk... High Unreviewed
CVE-2017-2870 was published May 13, 2022
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5... High Unreviewed
CVE-2017-2888 was published May 13, 2022
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing... Critical Unreviewed
CVE-2017-2892 was published May 13, 2022
An exploitable integer overflow exists in the TIFF loading functionality of the Blender open... High Unreviewed
CVE-2017-2899 was published May 13, 2022
An exploitable integer overflow exists in the IRIS loading functionality of the Blender open... High Unreviewed
CVE-2017-2901 was published May 13, 2022
An exploitable integer overflow exists in the animation playing functionality of the Blender open... High Unreviewed
CVE-2017-2907 was published May 13, 2022
An exploitable integer overflow exists in the DPX loading functionality of the Blender open... High Unreviewed
CVE-2017-2903 was published May 13, 2022
An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open... High Unreviewed
CVE-2017-2904 was published May 13, 2022
An exploitable integer overflow exists in the PNG loading functionality of the Blender open... High Unreviewed
CVE-2017-2900 was published May 13, 2022
An exploitable integer overflow exists in the DPX loading functionality of the Blender open... High Unreviewed
CVE-2017-2902 was published May 13, 2022
An exploitable integer overflow exists in the animation playing functionality of the Blender open... High Unreviewed
CVE-2017-2906 was published May 13, 2022
An exploitable integer overflow exists in the bmp loading functionality of the Blender open... High Unreviewed
CVE-2017-2905 was published May 13, 2022
An exploitable integer overflow exists in the thumbnail functionality of the Blender open-source... High Unreviewed
CVE-2017-2908 was published May 13, 2022
An exploitable integer overflow exists in the Image loading functionality of the Blender open... High Unreviewed
CVE-2017-2918 was published May 13, 2022
An exploitable memory corruption vulnerability exists in the Websocket protocol implementation of... Critical Unreviewed
CVE-2017-2921 was published May 13, 2022
An exploitable integer-overflow vulnerability exists within Iceni Argus. When it attempts to... High Unreviewed
CVE-2016-8389 was published May 13, 2022
An integer overflow in the process_bin_append_prepend function in Memcached, which is responsible... Critical Unreviewed
CVE-2016-8704 was published May 13, 2022
An integer overflow in process_bin_sasl_auth function in Memcached, which is responsible for... High Unreviewed
CVE-2016-8706 was published May 13, 2022
Multiple integer overflows in process_bin_update function in Memcached, which is responsible for... Critical Unreviewed
CVE-2016-8705 was published May 13, 2022
An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file... High Unreviewed
CVE-2016-9031 was published May 13, 2022
An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file... High Unreviewed
CVE-2016-8733 was published May 13, 2022
There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99... High Unreviewed
CVE-2018-20545 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database