Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,096
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,654
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

34 advisories

Loading
Loading a bgzip block can write out of bounds if size overflows. Critical
CVE-2021-28027 was published for bam (Rust) May 24, 2022
A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of... Critical Unreviewed
CVE-2021-21811 was published May 24, 2022
ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c... Critical Unreviewed
CVE-2021-40589 was published Jun 9, 2022
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function... Critical Unreviewed
CVE-2019-10053 was published May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an... Critical Unreviewed
CVE-2019-14532 was published May 24, 2022
Possible out of bound memory access in audio due to integer underflow while processing modified... Critical Unreviewed
CVE-2020-3691 was published May 24, 2022
Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in... Critical Unreviewed
CVE-2021-1919 was published May 24, 2022
Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto,... Critical Unreviewed
CVE-2021-1920 was published May 24, 2022
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed
CVE-2021-31889 was published May 24, 2022
The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer... Critical Unreviewed
CVE-2021-33315 was published May 12, 2022
The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer... Critical Unreviewed
CVE-2021-33316 was published May 12, 2022
Integer underflow in the base64-decoding implementation in EMC RSA BSAFE Micro Edition Suite (MES... Critical Unreviewed
CVE-2015-0537 was published May 13, 2022
In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 message,... Critical Unreviewed
CVE-2017-9214 was published May 13, 2022
Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a... Critical Unreviewed
CVE-2016-1925 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap_quote_string in... Critical Unreviewed
CVE-2018-14353 was published May 13, 2022
Fuji Electric V-Server 4.0.3.0 and prior, An integer underflow vulnerability has been identified,... Critical Unreviewed
CVE-2018-14817 was published May 13, 2022
Heap-based buffer overflow in Actian Pervasive PSQL v12.10 and Zen v13 allows remote attackers to... Critical Unreviewed
CVE-2017-11757 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20180 was published May 13, 2022
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap... Critical Unreviewed
CVE-2018-20179 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9129 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9167 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9198 was published May 14, 2022
An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This... Critical Unreviewed
CVE-2017-8911 was published May 17, 2022
Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics... Critical Unreviewed
CVE-2016-10166 was published May 17, 2022
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow... Critical Unreviewed
CVE-2015-2311 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database