Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

459 advisories

Loading
Integer overflow in libjasper/jpc/jpc_dec.c in JasPer 1.900.17 allows remote attackers to cause a... Moderate Unreviewed
CVE-2017-5499 was published May 13, 2022
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2... Moderate Unreviewed
CVE-2016-10507 was published May 13, 2022
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on... Moderate Unreviewed
CVE-2019-8354 was published May 13, 2022
The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the... Moderate Unreviewed
CVE-2014-3144 was published May 13, 2022
The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the... Moderate Unreviewed
CVE-2014-4655 was published May 13, 2022
Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the... Moderate Unreviewed
CVE-2014-4656 was published May 13, 2022
Multiple integer overflows in the (1) pppol2tp_sendmsg function in net/l2tp/l2tp_ppp.c, and the ... Moderate Unreviewed
CVE-2010-4160 was published May 13, 2022
Integer overflow in the ioc_general function in drivers/scsi/gdth.c in the Linux kernel before 2... Moderate Unreviewed
CVE-2010-4157 was published May 13, 2022
Integer overflow in the do_io_submit function in fs/aio.c in the Linux kernel before 2.6.36-rc4... Moderate Unreviewed
CVE-2010-3067 was published May 13, 2022
Multiple integer overflows in fs/bio.c in the Linux kernel before 2.6.36.2 allow local users to... Moderate Unreviewed
CVE-2010-4162 was published May 13, 2022
Integer overflow in the ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the... Moderate Unreviewed
CVE-2010-4649 was published May 13, 2022
Multiple integer overflows in the snd_ctl_new function in sound/core/control.c in the Linux... Moderate Unreviewed
CVE-2010-3442 was published May 13, 2022
Multiple integer overflows in the next_pidmap function in kernel/pid.c in the Linux kernel before... Moderate Unreviewed
CVE-2011-1593 was published May 13, 2022
Integer overflow in the agp_generic_insert_memory function in drivers/char/agp/generic.c in the... Moderate Unreviewed
CVE-2011-1745 was published May 13, 2022
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial... Moderate Unreviewed
CVE-2017-6312 was published May 13, 2022
Integer overflow in the oom_badness function in mm/oom_kill.c in the Linux kernel before 3.1.8 on... Moderate Unreviewed
CVE-2011-4097 was published May 13, 2022
Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm... Moderate Unreviewed
CVE-2018-10316 was published May 13, 2022
Integer overflow in the sg_start_req function in drivers/scsi/sg.c in the Linux kernel 2.6.x... Moderate Unreviewed
CVE-2015-5707 was published May 13, 2022
Multiple integer overflows in Google Chrome before 11.0.696.57 allow remote attackers to cause a... Moderate Unreviewed
CVE-2011-1437 was published May 13, 2022
Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of... Moderate Unreviewed
CVE-2016-3712 was published May 13, 2022
Multiple integer overflows in the PDF codecs in Google Chrome before 17.0.963.56 allow remote... Moderate Unreviewed
CVE-2011-3015 was published May 13, 2022
Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote attackers... Moderate Unreviewed
CVE-2011-3026 was published May 13, 2022
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01,... Moderate Unreviewed
CVE-2011-3045 was published May 13, 2022
data-tools through 2017-07-26 has an Integer Overflow leading to an incorrect end value for the... Moderate Unreviewed
CVE-2018-18749 was published May 13, 2022
Skia, as used in Google Chrome before 18.0.1025.142, allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2011-3065 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database