Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

297 advisories

Loading
Integer overflow in the Post Office Agent in Novell GroupWise before 2014 R2 Service Pack 1 Hot... Critical Unreviewed
CVE-2016-5762 was published May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CMap::Load() in engine/shared/map.cpp that... Critical Unreviewed
CVE-2019-10877 was published May 14, 2022
In Teeworlds 0.7.2, there is an integer overflow in CDataFileReader::Open() in engine/shared... Critical Unreviewed
CVE-2019-10879 was published May 14, 2022
** DISPUTED ** lighttpd before 1.4.54 has a signed integer overflow, which might allow remote... Critical Unreviewed
CVE-2019-11072 was published May 14, 2022
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The... Critical Unreviewed
CVE-2018-14618 was published May 14, 2022
Suricata version 4.0.4 incorrectly handles the parsing of an EtherNet/IP PDU. A malformed PDU can... Critical Unreviewed
CVE-2018-10244 was published May 14, 2022
Integer overflow in the gdImageWebpCtx function in gd_webp.c in the GD Graphics Library (aka... Critical Unreviewed
CVE-2016-7568 was published May 14, 2022
Integer overflow in the get_data function in zipimport.c in CPython (aka Python) before 2.7.12, 3... Critical Unreviewed
CVE-2016-5636 was published May 14, 2022
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when... Critical Unreviewed
CVE-2018-17157 was published May 14, 2022
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl... Critical Unreviewed
CVE-2018-18928 was published May 14, 2022
The Rust Programming Language Standard Library version 1.29.0, 1.28.0, 1.27.2, 1.27.1, 127.0, 126... Critical Unreviewed
CVE-2018-1000810 was published May 14, 2022
While generating trusted application id, An integer overflow can occur giving the trusted... Critical Unreviewed
CVE-2016-10502 was published May 14, 2022
LAquis SCADA Versions 4.1.0.3870 and prior has several integer overflow to buffer overflow... Critical Unreviewed
CVE-2018-17897 was published May 14, 2022
network/nw_buf.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to... Critical Unreviewed
CVE-2018-17569 was published May 14, 2022
utils/ut_ws_svr.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to... Critical Unreviewed
CVE-2018-17570 was published May 14, 2022
utils/ut_rpc.c in ViaBTC Exchange Server before 2018-08-21 has an integer overflow leading to... Critical Unreviewed
CVE-2018-17568 was published May 14, 2022
The NTLM authentication feature in curl and libcurl before 7.57.0 on 32-bit platforms allows... Critical Unreviewed
CVE-2017-8816 was published May 14, 2022
Multiple integer overflows in the (1) curl_escape, (2) curl_easy_escape, (3) curl_unescape, and ... Critical Unreviewed
CVE-2016-7167 was published May 14, 2022
Integer overflow in the str_pad function in ext/standard/string.c in PHP before 7.0.4 allows... Critical Unreviewed
CVE-2016-4346 was published May 14, 2022
A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus... Critical Unreviewed
CVE-2012-6706 was published May 14, 2022
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable... Critical Unreviewed
CVE-2016-7875 was published May 14, 2022
An issue was discovered in a smart contract implementation for STeX White List (STE(WL)), an... Critical Unreviewed
CVE-2018-14088 was published May 14, 2022
The increaseApproval function of a smart contract implementation for Tracto (TRCT), an Ethereum... Critical Unreviewed
CVE-2018-14063 was published May 14, 2022
An integer overflow to buffer overflow vulnerability exists in the ADSPRPC heap manager in all... Critical Unreviewed
CVE-2018-3586 was published May 14, 2022
An integer overflow at a u_read_undo memory allocation site would occur for vim before patch 8.0... Critical Unreviewed
CVE-2017-6349 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database