Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

186 advisories

Loading
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing... Critical Unreviewed
CVE-2019-14199 was published May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed
CVE-2019-5459 was published May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed
CVE-2019-13602 was published May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an... Moderate Unreviewed
CVE-2019-1628 was published May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed
CVE-2019-9755 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from... Critical Unreviewed
CVE-2019-2245 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from... Critical Unreviewed
CVE-2019-2244 was published May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in... Critical Unreviewed
CVE-2018-11930 was published May 24, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function... Critical Unreviewed
CVE-2019-10053 was published May 24, 2022
An integer underflow may occur due to lack of check when received data length from... High Unreviewed
CVE-2017-18278 was published May 24, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed
CVE-2014-9883 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed
CVE-2017-7367 was published May 17, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3034 was published May 17, 2022
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow... Critical Unreviewed
CVE-2015-2311 was published May 17, 2022
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed
CVE-2017-13666 was published May 17, 2022
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed
CVE-2017-14796 was published May 17, 2022
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to... Moderate Unreviewed
CVE-2017-15874 was published May 17, 2022
Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics... Critical Unreviewed
CVE-2016-10166 was published May 17, 2022
chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and... High Unreviewed
CVE-2016-2316 was published May 17, 2022
An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This... Critical Unreviewed
CVE-2017-8911 was published May 17, 2022
Integer underflow in the mov_read_default function in libavformat/mov.c in FFmpeg before 2.4.6... Moderate Unreviewed
CVE-2015-1208 was published May 14, 2022
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed
CVE-2016-10268 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9198 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9167 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9129 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database