Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

220 advisories

Loading
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR... Moderate Unreviewed
CVE-2021-26260 was published May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0... Moderate Unreviewed
CVE-2021-26945 was published May 24, 2022
A flaw was found in gdk-pixbuf in versions before 2.42.0. An integer wraparound leading to an out... High Unreviewed
CVE-2021-20240 was published May 24, 2022
Microsoft Office Information Disclosure Vulnerability Moderate Unreviewed
CVE-2021-31178 was published May 24, 2022
An integer underflow was discovered in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series,... High Unreviewed
CVE-2021-25849 was published May 24, 2022
Improper validation of the ChassisID TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V... High Unreviewed
CVE-2021-25846 was published May 24, 2022
A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in... High Unreviewed
CVE-2021-3472 was published May 24, 2022
The Fatek Automation WinProladder Versions 3.3 and prior are vulnerable to an integer underflow,... High Unreviewed
CVE-2021-27486 was published May 24, 2022
An issue was discovered in Contiki through 3.0. When sending an ICMPv6 error message because of... High Unreviewed
CVE-2021-28362 was published May 24, 2022
Loading a bgzip block can write out of bounds if size overflows. Critical
CVE-2021-28027 was published for bam (Rust) May 24, 2022
An integer underflow has been found in the latest version of ZCFees. The variables 'currPeriodIdx... High Unreviewed
CVE-2020-24837 was published May 24, 2022
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to a slapd crash in the... High Unreviewed
CVE-2020-36228 was published May 24, 2022
An integer underflow was discovered in OpenLDAP before 2.4.57 leading to slapd crashes in the... High Unreviewed
CVE-2020-36221 was published May 24, 2022
Possible out of bound memory access in audio due to integer underflow while processing modified... Critical Unreviewed
CVE-2020-3691 was published May 24, 2022
In Arm software implementing the Armv8-M processors (all versions), the stack selection mechanism... High Unreviewed
CVE-2020-16273 was published May 24, 2022
u'Out of Bound issue in DSP services while processing received arguments due to improper... High Unreviewed
CVE-2020-11208 was published May 24, 2022
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`... Moderate Unreviewed
CVE-2020-14378 was published May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed
CVE-2020-14362 was published May 24, 2022
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension... Moderate Unreviewed
CVE-2020-14346 was published May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed
CVE-2020-14361 was published May 24, 2022
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal,... Moderate Unreviewed
CVE-2020-24370 was published May 24, 2022
An exploitable denial of service vulnerability exists in the freeDiameter functionality of... Moderate Unreviewed
CVE-2020-6098 was published May 24, 2022
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0,... High Unreviewed
CVE-2020-8174 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed
CVE-2020-14699 was published May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2020-1400 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database