GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,931
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,517
Maven 5,956
npm 4,150
NuGet 736
pip 3,952
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 269,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,291 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0... High Unreviewed

CVE-2018-20546 was published May 13, 2022

Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix... Moderate Unreviewed

CVE-2018-8098 was published May 12, 2022

There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls... Moderate Unreviewed

CVE-2022-27114 was published May 10, 2022

In versions of mruby up to and including 1.4.0, an integer overflow exists in src/vm.c:... Critical Unreviewed

CVE-2018-10191 was published May 7, 2022

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer... High Unreviewed

CVE-2018-14337 was published May 7, 2022

In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow... Moderate Unreviewed

CVE-2022-28471 was published May 6, 2022

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... High Unreviewed

CVE-2022-28705 was published May 6, 2022

A denial of service vulnerability exists in the libxm_av.so DemuxCmdInBuffer functionality of... Moderate Unreviewed

CVE-2022-26073 was published May 6, 2022

Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the... High Unreviewed

CVE-2012-0044 was published May 4, 2022

Integer overflow in the xfs_acl_from_disk function in fs/xfs/xfs_acl.c in the Linux kernel before... Moderate Unreviewed

CVE-2012-0038 was published May 4, 2022

In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c ... Moderate Unreviewed

CVE-2022-29824 was published May 4, 2022

The Security Team discovered an integer overflow bug that allows an attacker with code execution... High Unreviewed

CVE-2021-22556 was published May 4, 2022

NXP MQX Versions 5.1 and prior are vulnerable to integer overflow in mem_alloc, _lwmem_alloc and... Critical Unreviewed

CVE-2021-22680 was published May 4, 2022

Micrium OS Versions 5.10.1 and prior are vulnerable to integer wrap-around in functions... Moderate Unreviewed

CVE-2021-27411 was published May 4, 2022

eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in... Critical Unreviewed

CVE-2021-27417 was published May 4, 2022

ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc ... Critical Unreviewed

CVE-2021-27431 was published May 4, 2022

RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc... Critical Unreviewed

CVE-2021-27427 was published May 4, 2022

NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc... Critical Unreviewed

CVE-2021-27421 was published May 4, 2022

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc.... Critical Unreviewed

CVE-2021-27425 was published May 4, 2022

uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc... Critical Unreviewed

CVE-2021-27419 was published May 4, 2022

ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function... Critical Unreviewed

CVE-2021-27433 was published May 4, 2022

TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc... Critical Unreviewed

CVE-2021-27439 was published May 4, 2022

ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in malloc_wrapper function,... Critical Unreviewed

CVE-2021-27435 was published May 4, 2022

In subtitle service, there is a possible application crash due to an integer overflow. This could... Moderate Unreviewed

CVE-2022-20107 was published May 4, 2022

In ion, there is a possible use after free due to an integer overflow. This could lead to local... High Unreviewed

CVE-2022-21743 was published May 4, 2022

Previous 1…86…92 Next

Previous 1 2 … 84 85 86 87 88 … 91 92 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,291 advisories