Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,838
Erlang
36
GitHub Actions
33
Go
2,460
Maven
5,000+
npm
4,082
NuGet
723
pip
3,873
Pub
12
RubyGems
943
Rust
1,010
Swift
39
Unreviewed advisories
All unreviewed
5,000+

119 advisories

Loading
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less... Moderate Unreviewed
CVE-2021-28039 was published May 24, 2022
An out-of-bounds write vulnerability exists in the PSD Header processing functionality of... High Unreviewed
CVE-2020-13585 was published May 24, 2022
Microsoft Defender Remote Code Execution Vulnerability High Unreviewed
CVE-2021-1647 was published May 24, 2022
Windows Kernel Local Elevation of Privilege Vulnerability High Unreviewed
CVE-2020-17087 was published May 24, 2022
On Juniper Networks MX Series with MS-MIC or MS-MPC card configured with NAT64 configuration,... Moderate Unreviewed
CVE-2020-1680 was published May 24, 2022
A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata... Moderate Unreviewed
CVE-2020-14385 was published May 24, 2022
An exploitable code execution vulnerability exists in the file system checking functionality of... Moderate Unreviewed
CVE-2020-6070 was published May 24, 2022
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All... High Unreviewed
CVE-2019-19282 was published May 24, 2022
An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and... Moderate Unreviewed
CVE-2019-5435 was published May 24, 2022
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an... Moderate Unreviewed
CVE-2019-3560 was published May 24, 2022
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14934 was published May 13, 2022
In writeToParcel and createFromParcel of RttManager.java, there is a permission bypass due to a... High Unreviewed
CVE-2017-13289 was published May 13, 2022
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0569 was published May 13, 2022
An elevation of privilege vulnerability exists in Windows when LDAP request buffer lengths are... High Unreviewed
CVE-2017-0166 was published May 13, 2022
The asn1_get_bit_der function in GNU Libtasn1 before 3.6 does not properly report an error when a... High Unreviewed
CVE-2014-3468 was published May 13, 2022
An exploitable arbitrary write vulnerability exists in the open document format parser of the... High Unreviewed
CVE-2018-4038 was published May 13, 2022
All versions of GurumDDS improperly calculate the size to be used when allocating the buffer,... Critical Unreviewed
CVE-2021-38423 was published May 6, 2022
RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly... Critical Unreviewed
CVE-2021-38435 was published May 6, 2022
A memory corruption vulnerability exists in the ioca_mys_rgb_allocate functionality of Accusoft... Moderate Unreviewed
CVE-2022-22137 was published May 4, 2022
The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly... High Unreviewed
CVE-2008-0599 was published May 1, 2022
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a... High Unreviewed
CVE-2005-2103 was published May 1, 2022
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions,... Moderate Unreviewed
CVE-2005-0490 was published May 1, 2022
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause... High Unreviewed
CVE-2002-1347 was published Apr 30, 2022
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow... High Unreviewed
CVE-2002-0184 was published Apr 30, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2001-0334 was published Apr 30, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database