Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,679
Erlang
34
GitHub Actions
26
Go
2,268
Maven
5,000+
npm
3,923
NuGet
705
pip
3,686
Pub
12
RubyGems
916
Rust
944
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,324 advisories

Loading
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer... High Unreviewed
CVE-2022-44638 was published Nov 3, 2022
Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to... Critical Unreviewed
CVE-2022-23943 was published Mar 15, 2022
Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond... Critical Unreviewed
CVE-2022-28615 was published Jun 10, 2022
Tesla Model 3 VCSEC Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-2082 was published Apr 30, 2025
Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to... High Unreviewed
CVE-2023-5849 was published Nov 1, 2023
An integer overflow was addressed with improved input validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31203 was published Apr 29, 2025
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth... High Unreviewed
CVE-2022-45934 was published Nov 27, 2022
An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with... High Unreviewed
CVE-2022-40303 was published Nov 23, 2022
A malicious client which is allowed to send very large amounts of traffic (billions of packets)... High Unreviewed
CVE-2018-5733 was published May 13, 2022
FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based... Critical Unreviewed
CVE-2025-23016 was published Jan 10, 2025
GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-2760 was published Apr 23, 2025
In several functions that parse avrc response in avrc_pars_ct.cc and related files, there are... High Unreviewed
CVE-2022-20483 was published Dec 13, 2022
kernel/bpf/verifier.c in the Linux kernel 4.9.x through 4.9.71 does not check the relationship... High Unreviewed
CVE-2017-17863 was published May 14, 2022
The dump_relocs_in_section function in objdump.c in GNU Binutils 2.29.1 does not check for reloc... High Unreviewed
CVE-2017-17122 was published May 14, 2022
libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows... High Unreviewed
CVE-2017-16612 was published May 14, 2022
coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU... High Unreviewed
CVE-2017-16831 was published May 14, 2022
The pe_bfd_read_buildid function in peicode.h in the Binary File Descriptor (BFD) library (aka... High Unreviewed
CVE-2017-16832 was published May 14, 2022
The print_gnu_property_note function in readelf.c in GNU Binutils 2.29.1 does not have integer... High Unreviewed
CVE-2017-16830 was published May 14, 2022
The display_debug_frames function in dwarf.c in GNU Binutils 2.29.1 allows remote attackers to... High Unreviewed
CVE-2017-16828 was published May 14, 2022
The malloc function in the GNU C Library (aka glibc or libc6) 2.26 could return a memory block... High Unreviewed
CVE-2017-17426 was published May 17, 2022
Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to... High Unreviewed
CVE-2017-1000229 was published May 14, 2022
CPython (aka Python) up to 2.7.13 is vulnerable to an integer overflow in the... Critical Unreviewed
CVE-2017-1000158 was published May 13, 2022
The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an... Moderate Unreviewed
CVE-2017-15873 was published May 13, 2022
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5... High Unreviewed
CVE-2017-2888 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading... High Unreviewed
CVE-2017-8278 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database