GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,198
Composer 4,096
Erlang 29
GitHub Actions 19
Go 1,925
Maven 5,116
npm 3,654
NuGet 638
pip 3,263
Pub 10
RubyGems 873
Rust 823
Swift 35

Unreviewed advisories

All unreviewed 229,288

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

55 advisories

Filter by severity

Sort by

Least recently updated

While processing a debug log event from firmware in all Android releases from CAF using the Linux... Moderate Unreviewed

CVE-2018-5865 was published May 14, 2022

Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in... Moderate Unreviewed

CVE-2014-8768 was published May 14, 2022

The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10... Moderate Unreviewed

CVE-2017-8924 was published May 14, 2022

Crash in `max_pool3d` when size argument is 0 or negative Moderate

CVE-2021-41196 was published for tensorflow (pip) Nov 10, 2021

An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed

CVE-2017-8906 was published May 13, 2022

Integer underflow in the asfrtp_parse_packet function in libavformat/rtpdec_asf.c in FFmpeg... Moderate Unreviewed

CVE-2011-4031 was published May 13, 2022

Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a... Moderate Unreviewed

CVE-2010-2497 was published May 13, 2022

When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't... Moderate Unreviewed

CVE-2019-9133 was published May 13, 2022

Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the... Moderate Unreviewed

CVE-2015-5212 was published May 13, 2022

An exploitable integer underflow vulnerability exists in the ZigBee firmware update routine of... Moderate Unreviewed

CVE-2018-3926 was published May 13, 2022

An integer underflow issue was found in the QEMU VNC server while processing ClientCutText... Moderate Unreviewed

CVE-2022-3165 was published Oct 17, 2022

An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0... Moderate Unreviewed

CVE-2021-26945 was published May 24, 2022

Wazuh Manager in Wazuh through 4.1.5 is affected by a remote Integer Underflow vulnerability that... Moderate Unreviewed

CVE-2021-41821 was published May 24, 2022

An exploitable denial of service vulnerability exists in the freeDiameter functionality of... Moderate Unreviewed

CVE-2020-6098 was published May 24, 2022

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed

CVE-2020-14699 was published May 24, 2022

An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa... Moderate Unreviewed

CVE-2019-5148 was published May 24, 2022

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed

CVE-2020-14362 was published May 24, 2022

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed

CVE-2020-14361 was published May 24, 2022

Buffer overflow can occur while processing non-standard NAN message from user space. in... Moderate Unreviewed

CVE-2019-2297 was published May 24, 2022

A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension... Moderate Unreviewed

CVE-2020-14346 was published May 24, 2022

An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`... Moderate Unreviewed

CVE-2020-14378 was published May 24, 2022

A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an... Moderate Unreviewed

CVE-2019-1628 was published May 24, 2022

The Rating by BestWebSoft WordPress plugin through 1.5 does not validate the submitted rating,... Moderate Unreviewed

CVE-2021-25121 was published Jun 21, 2022

An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR... Moderate Unreviewed

CVE-2021-26260 was published May 24, 2022

An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G... Moderate Unreviewed

CVE-2022-30787 was published May 27, 2022

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

55 advisories