GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,272
Erlang
31
GitHub Actions
21
Go
2,047
Maven
5,000+
npm
3,739
NuGet
666
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
37 advisories
Filter by severity
A negative-size-param in tsMuxer version nightly-2024-04-05-01-53-02 allows attackers to cause...
Moderate
Unreviewed
CVE-2024-49776
was published
Nov 15, 2024
Heap OOB and null pointer dereference in `RaggedTensorToTensor`
Moderate
CVE-2021-29608
was published
for
tensorflow
(pip)
May 21, 2021
The WBR-6012 is a wireless SOHO router. It is a low-cost device which functions as an internet...
Moderate
Unreviewed
CVE-2024-28052
was published
Oct 30, 2024
In the Linux kernel, the following vulnerability has been resolved:
drm/i915/gem: Fix Virtual...
Moderate
Unreviewed
CVE-2024-42259
was published
Aug 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
binfmt_elf_fdpic: fix AUXV...
Moderate
Unreviewed
CVE-2024-46684
was published
Sep 13, 2024
Incorrect Calculation of Buffer Size (CWE-131) in the Controller 6000 and Controller 7000 OSDP...
Moderate
Unreviewed
CVE-2024-39808
was published
Sep 11, 2024
In the Linux kernel, the following vulnerability has been resolved:
ASoC: Intel: sof-nau8825:...
Moderate
Unreviewed
CVE-2022-48889
was published
Aug 21, 2024
An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and...
Moderate
Unreviewed
CVE-2019-5435
was published
May 24, 2022
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less...
Moderate
Unreviewed
CVE-2021-28039
was published
May 24, 2022
An integer overflow was found in the __vsyslog_internal function of the glibc library. This...
Moderate
Unreviewed
CVE-2023-6780
was published
Jan 31, 2024
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a ...
Moderate
Unreviewed
CVE-2004-0747
was published
Apr 29, 2022
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions,...
Moderate
Unreviewed
CVE-2005-0490
was published
May 1, 2022
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local...
Moderate
Unreviewed
CVE-2004-0940
was published
Apr 29, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a...
Moderate
Unreviewed
CVE-2001-0334
was published
Apr 30, 2022
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer...
Moderate
Unreviewed
CVE-2022-32624
was published
Dec 5, 2022
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an...
Moderate
Unreviewed
CVE-2019-3560
was published
May 24, 2022
Incorrect buffer size in crossbeam-channel
Moderate
CVE-2020-35904
was published
for
crossbeam-channel
(Rust)
Aug 25, 2021
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host...
Moderate
Unreviewed
CVE-2022-2873
was published
Aug 23, 2022
In pqframework, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2023-20627
was published
Mar 7, 2023
A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at...
Moderate
Unreviewed
CVE-2022-2520
was published
Sep 1, 2022
In sensorhub, there is a possible out of bounds write due to an incorrect calculation of buffer...
Moderate
Unreviewed
CVE-2022-26474
was published
Oct 8, 2022
In mtk-isp, there is a possible use after free due to a logic error. This could lead to local...
Moderate
Unreviewed
CVE-2022-32650
was published
Jan 3, 2023
In mtk-aie, there is a possible use after free due to a logic error. This could lead to local...
Moderate
Unreviewed
CVE-2022-32651
was published
Jan 3, 2023
In jpeg, there is a possible use after free due to a logic error. This could lead to local...
Moderate
Unreviewed
CVE-2022-32649
was published
Jan 3, 2023
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as...
Moderate
Unreviewed
CVE-2017-14934
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API