Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,409
Erlang
33
GitHub Actions
22
Go
2,144
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,163 advisories

Loading
The path in this case is a little bit convoluted. The end result is that via an ioctl an... Critical Unreviewed
CVE-2021-0942 was published Sep 14, 2022
In LibRaw, an out-of-bounds read vulnerability exists within the get_huffman_diff() function ... Moderate Unreviewed
CVE-2020-35531 was published Sep 2, 2022
Out-of-bounds Read in Facebook Hermes High
CVE-2020-1915 was published for hermes-engine (npm) May 24, 2022
DanielSinclair Nsquik
troZee CHaNGeTe ivan-mattr mmehtonen-24i
An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles parses certain encoded... Moderate Unreviewed
CVE-2020-13496 was published May 24, 2022
An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and... Critical Unreviewed
CVE-2017-9224 was published May 14, 2022
An exploitable denial-of-service vulnerability exists in the Weave certificate loading... High Unreviewed
CVE-2019-5037 was published May 24, 2022
An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose... High Unreviewed
CVE-2019-5032 was published May 24, 2022
Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure... Moderate Unreviewed
CVE-2021-28116 was published May 24, 2022
In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2021-0460 was published May 24, 2022
When using fgetss() function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27... Moderate Unreviewed
CVE-2020-7059 was published May 24, 2022
An exploitable information disclosure vulnerability exists in the Weave Legacy Pairing... Moderate Unreviewed
CVE-2019-5034 was published May 24, 2022
In the nl80211_policy policy of nl80211.c, there is a possible out of bounds read due to a... Moderate Unreviewed
CVE-2020-27068 was published May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2019-6765 was published May 24, 2022
An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when... High Unreviewed
CVE-2022-3170 was published Sep 14, 2022
An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and... Moderate Unreviewed
CVE-2020-11763 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in the traversal of lists functionality of... High Unreviewed
CVE-2017-2858 was published May 13, 2022
An exploitable information disclosure vulnerability exists in the packet-parsing functionality of... Moderate Unreviewed
CVE-2019-5065 was published May 24, 2022
An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose... High Unreviewed
CVE-2019-5033 was published May 24, 2022
In LibRaw, an out-of-bounds read vulnerability exists within the "simple_decode_row()" function ... Moderate Unreviewed
CVE-2020-35532 was published Sep 2, 2022
In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers... Critical Unreviewed
CVE-2017-11147 was published May 13, 2022
In LibRaw, an out-of-bounds read vulnerability exists within the "LibRaw::adobe_copy_pixel()"... Moderate Unreviewed
CVE-2020-35533 was published Sep 2, 2022
An exploitable denial-of-service vulnerability exists in the lookup entry functionality of... High Unreviewed
CVE-2017-2860 was published May 13, 2022
An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing... High Unreviewed
CVE-2017-2895 was published May 13, 2022
An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and... Critical Unreviewed
CVE-2017-9227 was published May 14, 2022
Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. #... High Unreviewed
CVE-2022-1427 was published Apr 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database