Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
41
Go
3,049
Maven
5,000+
npm
4,787
NuGet
825
pip
4,384
Pub
12
RubyGems
988
Rust
1,144
Swift
50
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,431 advisories

Loading
Incorrect boundary conditions in the Web Audio component. This vulnerability affects Firefox <... Critical Unreviewed
CVE-2026-2773 was published Feb 24, 2026
In vpu_mmap of vpu_ioctl, there is a possible arbitrary address mmap due to a missing bounds... Critical Unreviewed
CVE-2026-0106 was published Feb 5, 2026
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in... Critical Unreviewed
CVE-2026-24798 was published Jan 27, 2026
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in... Critical Unreviewed
CVE-2026-24794 was published Jan 27, 2026
Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence... Critical Unreviewed
CVE-2026-0892 was published Jan 13, 2026
Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability... Critical Unreviewed
CVE-2026-0879 was published Jan 13, 2026
A vulnerability has been found in TOTOLINK T10 4.1.8cu.5083_B20200521. This affects the function... Critical Unreviewed
CVE-2025-14964 was published Dec 19, 2025
The issue was addressed with improved memory handling. This issue is fixed in tvOS 26, Safari 26,... Critical Unreviewed
CVE-2025-43343 was published Sep 16, 2025
JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability affects Firefox <... Critical Unreviewed
CVE-2025-14330 was published Dec 9, 2025
Mozilla developers and community members reported memory safety bugs present in Firefox 68,... Critical Unreviewed
CVE-2019-11740 was published May 24, 2022
The IonMonkey just-in-time (JIT) compiler can leak an internal JS_OPTIMIZED_OUT magic value to... Critical Unreviewed
CVE-2019-9792 was published May 24, 2022
Mozilla developers and community members reported memory safety bugs present in Firefox 62 and... Critical Unreviewed
CVE-2018-12390 was published May 14, 2022
Mozilla developers and community members reported memory safety bugs present in Firefox 67 and... Critical Unreviewed
CVE-2019-11709 was published May 24, 2022
Mozilla developers and community members reported memory safety bugs present in Firefox 65,... Critical Unreviewed
CVE-2019-9788 was published May 24, 2022
Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of... Critical Unreviewed
CVE-2018-5150 was published May 14, 2022
Memory safety bugs present in Firefox 60 and Firefox ESR 60. Some of these bugs showed evidence... Critical Unreviewed
CVE-2018-5187 was published May 14, 2022
Mozilla developers backported selected changes in the Skia library. These changes correct memory... Critical Unreviewed
CVE-2018-5183 was published May 14, 2022
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware... Critical Unreviewed
CVE-2018-18493 was published May 14, 2022
Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence... Critical Unreviewed
CVE-2018-12376 was published May 14, 2022
The bufferdata function in WebGL is vulnerable to a buffer overflow with specific graphics... Critical Unreviewed
CVE-2019-11693 was published May 24, 2022
Mozilla developers and community members reported memory safety bugs present in Firefox 63 and... Critical Unreviewed
CVE-2018-12405 was published May 14, 2022
Memory safety bugs were reported in Firefox ESR 52.6. These bugs showed evidence of memory... Critical Unreviewed
CVE-2018-5145 was published May 14, 2022
A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library,... Critical Unreviewed
CVE-2017-7824 was published May 14, 2022
Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. Some of these bugs showed... Critical Unreviewed
CVE-2018-5089 was published May 14, 2022
Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed... Critical Unreviewed
CVE-2017-7826 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database