Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
42
GitHub Actions
42
Go
3,138
Maven
5,000+
npm
5,000+
NuGet
831
pip
4,438
Pub
12
RubyGems
990
Rust
1,174
Swift
50
Unreviewed advisories
All unreviewed
5,000+

290 advisories

Loading
Integer overflow in Skia in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to... High Unreviewed
CVE-2026-3538 was published Mar 4, 2026
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, contain an out-of... Moderate Unreviewed
CVE-2026-23748 was published Feb 26, 2026
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database... High Unreviewed
CVE-2026-3172 was published Feb 25, 2026
An integer underflow vulnerability is present in Silicon Lab’s implementation of PSA Crypto and... Low Unreviewed
CVE-2025-14547 was published Feb 20, 2026
A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric... Moderate Unreviewed
CVE-2025-1924 was published Feb 13, 2026
A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric... Moderate Unreviewed
CVE-2025-48021 was published Feb 13, 2026
In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2... High Unreviewed
CVE-2025-62291 was published Jan 16, 2026
An integer underflow vulnerability exists in the `nextstate()` function in `gpsd/packet.c` of... High Unreviewed
CVE-2025-67269 was published Jan 2, 2026
Integer underflow (wrap or wraparound) in Windows Hyper-V allows an authorized attacker to deny... Moderate Unreviewed
CVE-2025-62567 was published Dec 9, 2025
An integer underflow vulnerability has been identified in Aicloud. An authenticated attacker may... Moderate Unreviewed
CVE-2025-59368 was published Nov 25, 2025
Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt. This issue is hit... Low Unreviewed
CVE-2025-11931 was published Nov 22, 2025
Multiple vulnerabilities exist in cbor2 through version 5.7.0 in the decode_definite_long_string(... High Unreviewed
CVE-2025-64076 was published Nov 18, 2025
Substance3D - Stager versions 3.1.5 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61835 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61836 was published Nov 11, 2025
Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow (Wrap or... High Unreviewed
CVE-2025-61826 was published Nov 11, 2025
ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS) Moderate
CVE-2025-62594 was published for Magick.NET-Q16-HDRI-OpenMP-arm64 (NuGet) Oct 27, 2025
amethyst0225 Credited to amethyst0225, jin-156, hanbunny, and yosiimich jin-156 jin-156
hanbunny hanbunny yosiimich yosiimich
In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bam_dma:... Moderate Unreviewed
CVE-2022-49650 was published Oct 23, 2025
orx-pinned-vec has undefined behavior in index_of_ptr with empty slices Low
GHSA-h5j3-crg5-8jqm was published for orx-pinned-vec (Rust) Oct 21, 2025
In the Linux kernel, the following vulnerability has been resolved: RDMA/nldev: Prevent... Moderate Unreviewed
CVE-2022-49199 was published Oct 21, 2025
An integer overflow vulnerability exists in the QuickJS regular expression engine (libregexp) due... High Unreviewed
CVE-2025-62495 was published Oct 16, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mt7601u: fix an... Moderate Unreviewed
CVE-2023-53679 was published Oct 7, 2025
In the Linux kernel, the following vulnerability has been resolved: i2c: rtl9300: ensure data... Moderate Unreviewed
CVE-2025-39928 was published Oct 1, 2025
In the Linux kernel, the following vulnerability has been resolved: remoteproc: Fix count check... High Unreviewed
CVE-2022-49278 was published Sep 22, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix... Moderate Unreviewed
CVE-2023-53258 was published Sep 15, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and... Moderate Unreviewed
CVE-2023-53226 was published Sep 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database