Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,349
Erlang
31
GitHub Actions
22
Go
2,117
Maven
5,000+
npm
3,770
NuGet
680
pip
3,458
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

216 advisories

Loading
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed
CVE-2016-10268 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9198 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9167 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9129 was published May 14, 2022
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, -... High Unreviewed
CVE-2017-14496 was published May 14, 2022
In the function csr_update_fils_params_rso(), insufficient validation on a key length can result... High Unreviewed
CVE-2018-5850 was published May 14, 2022
While processing a debug log event from firmware in all Android releases from CAF using the Linux... Moderate Unreviewed
CVE-2018-5865 was published May 14, 2022
An wrong logical check identified in the transferFrom function of a smart contract implementation... High Unreviewed
CVE-2018-12230 was published May 14, 2022
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to... Moderate Unreviewed
CVE-2015-8370 was published May 14, 2022
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in... Moderate Unreviewed
CVE-2014-8768 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11301 was published May 14, 2022
Improper input validation in Bluetooth Controller function can lead to possible memory corruption... High Unreviewed
CVE-2017-18170 was published May 14, 2022
Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0... High Unreviewed
CVE-2014-0497 was published May 14, 2022
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0... High Unreviewed
CVE-2018-16601 was published May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20179 was published May 14, 2022
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10... Moderate Unreviewed
CVE-2017-8924 was published May 14, 2022
GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (excessive memory... High Unreviewed
CVE-2017-14997 was published May 14, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20180 was published May 13, 2022
Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to... Critical Unreviewed
CVE-2017-11757 was published May 13, 2022
Fuji Electric V-Server 4.0.3.0 and prior, An integer underflow vulnerability has been identified,... Critical Unreviewed
CVE-2018-14817 was published May 13, 2022
In MP4v2 2.0.0, there is an integer underflow (with resultant memory corruption) when parsing... High Unreviewed
CVE-2018-14325 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in... Critical Unreviewed
CVE-2018-14353 was published May 13, 2022
Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG,... High Unreviewed
CVE-2014-9087 was published May 13, 2022
Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a... Critical Unreviewed
CVE-2016-1925 was published May 13, 2022
Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel... High Unreviewed
CVE-2011-1770 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database