GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
55 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
net: fix crash when config...
Moderate
Unreviewed
CVE-2024-50258
was published
Nov 9, 2024
The affected product is vulnerable to an integer underflow. An unauthenticated attacker could...
Moderate
Unreviewed
CVE-2024-52558
was published
Dec 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: ar0521: don't...
Moderate
Unreviewed
CVE-2024-53081
was published
Nov 19, 2024
A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client...
Moderate
Unreviewed
CVE-2024-20474
was published
Oct 23, 2024
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to...
Moderate
Unreviewed
CVE-2015-8370
was published
May 14, 2022
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure...
Moderate
Unreviewed
CVE-2024-46730
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
vt_ioctl: fix...
Moderate
Unreviewed
CVE-2022-48804
was published
Jul 16, 2024
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal,...
Moderate
Unreviewed
CVE-2020-24370
was published
May 24, 2022
Information disclosure while parsing sub-IE length during new IE generation.
Moderate
Unreviewed
CVE-2024-21466
was published
Jul 1, 2024
Sonos Era 100 SMB2 Message Handling Integer Underflow Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-5256
was published
Jun 6, 2024
Windows DWM Core Library Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30008
was published
May 14, 2024
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-30011
was published
May 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
tpm: efi: Use local variable...
Moderate
Unreviewed
CVE-2021-46951
was published
Feb 27, 2024
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2004-1002
was published
Apr 29, 2022
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote...
Moderate
Unreviewed
CVE-2005-1891
was published
May 1, 2022
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote...
Moderate
Unreviewed
CVE-2004-0816
was published
Apr 29, 2022
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1...
Moderate
Unreviewed
CVE-2023-43628
was published
Dec 5, 2023
Microsoft Office Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2021-31178
was published
May 24, 2022
In keyinstall, there is a possible information disclosure due to an integer overflow. This could...
Moderate
Unreviewed
CVE-2023-20635
was published
Mar 7, 2023
In wlan driver, there is a possible missing params check. This could lead to local denial of...
Moderate
Unreviewed
CVE-2022-38681
was published
Feb 12, 2023
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context...
Moderate
Unreviewed
CVE-2013-6424
was published
May 13, 2022
Integer underflow in the pixman_trapezoid_valid macro in pixman.h in Pixman before 0.32.0, as...
Moderate
Unreviewed
CVE-2013-6425
was published
May 13, 2022
A use-after-free flaw was found in io_uring/filetable.c in io_install_fixed_file in the io_uring...
Moderate
Unreviewed
CVE-2023-0469
was published
Jan 26, 2023
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for...
Moderate
Unreviewed
CVE-2017-13666
was published
May 17, 2022
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to...
Moderate
Unreviewed
CVE-2017-15874
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API