Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,287 advisories

Loading
In preloader (usb), there is a possible out of bounds write due to an integer overflow. This... Moderate Unreviewed
CVE-2022-20069 was published Apr 12, 2022
Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds... High Unreviewed
CVE-2022-27833 was published Apr 12, 2022
GPAC mp4box 1.1.0-DEV-rev1663-g881c6a94a-master is vulnerable to Integer Overflow. Moderate Unreviewed
CVE-2022-27148 was published Apr 9, 2022
Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to... High Unreviewed
CVE-2022-0608 was published Apr 6, 2022
In libstagefright, there is a possible out of bounds write due to an integer overflow. This could... High Unreviewed
CVE-2021-39759 was published Mar 31, 2022
An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a... High Unreviewed
CVE-2022-0998 was published Mar 31, 2022
NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this... High Unreviewed
CVE-2022-21821 was published Mar 30, 2022
Mojang Bedrock Dedicated Server 1.18.2 is affected by an integer overflow leading to a bound... Critical Unreviewed
CVE-2022-23884 was published Mar 29, 2022
An integer overflow could occur when OpenEXR processes a crafted file on systems where size_t <... Moderate Unreviewed
CVE-2021-3933 was published Mar 26, 2022
In ion_buffer_kmap_get of ion.c, there is a possible use-after-free due to an integer overflow.... High Unreviewed
CVE-2021-39714 was published Mar 17, 2022
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to... Critical Unreviewed
CVE-2022-23943 was published Mar 15, 2022
If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32... Critical Unreviewed
CVE-2022-22721 was published Mar 15, 2022
A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with... High Unreviewed
CVE-2022-0204 was published Mar 11, 2022
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V5.6.0), RUGGEDCOM ROS... Critical Unreviewed
CVE-2021-42019 was published Mar 9, 2022
In nbd-server in nbd before 3.24, there is an integer overflow with a resultant heap-based buffer... Critical Unreviewed
CVE-2022-26495 was published Mar 7, 2022
An integer overflow in WatchGuard Firebox and XTM appliances allows an authenticated remote... High Unreviewed
CVE-2022-25291 was published Mar 5, 2022
A flaw was found in OpenEXR's hufUncompress functionality in OpenEXR/IlmImf/ImfHuf.cpp. This flaw... High Unreviewed
CVE-2021-20300 was published Mar 5, 2022
A flaw was found in the Linux kernel. A denial of service problem is identified if an extent tree... Moderate Unreviewed
CVE-2021-3428 was published Mar 5, 2022
A flaw found in function dataWindowForTile() of IlmImf/ImfTiledMisc.cpp. An attacker who is able... Moderate Unreviewed
CVE-2021-20303 was published Mar 5, 2022
An integer overflow in DTSStreamReader::findFrame() of tsMuxer git-2678966 allows attackers to... Moderate Unreviewed
CVE-2021-45860 was published Mar 3, 2022
There is an improper verification vulnerability in smartphones. Successful exploitation of this... High Unreviewed
CVE-2021-22319 was published Feb 26, 2022
There is a software integer overflow leading to a TOCTOU condition in smartphones. Successful... High Unreviewed
CVE-2021-22437 was published Feb 26, 2022
Some Huawei products have an integer overflow vulnerability. Successful exploitation of this... Moderate Unreviewed
CVE-2021-22441 was published Feb 26, 2022
The interface of a certain HarmonyOS module has an integer overflow vulnerability. Successful... Critical Unreviewed
CVE-2021-22480 was published Feb 26, 2022
TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function... High Unreviewed
CVE-2022-25062 was published Feb 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database