GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,238
Erlang
31
GitHub Actions
21
Go
2,005
Maven
5,000+
npm
3,716
NuGet
661
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
297 advisories
Filter by severity
An issue was discovered in klibc before 2.0.9. Additions in the malloc() function may result in...
Critical
Unreviewed
CVE-2021-31873
was published
May 24, 2022
In BIND 9.5.0 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.11.3-S1 -> 9.11.29-S1 and 9.16.8...
Critical
Unreviewed
CVE-2021-25216
was published
May 24, 2022
Unbound before 1.9.5 allows an integer overflow in a size calculation in dnscrypt/dnscrypt.c.
Critical
Unreviewed
CVE-2019-25038
was published
May 24, 2022
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c.
Critical
Unreviewed
CVE-2019-25039
was published
May 24, 2022
Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an...
Critical
Unreviewed
CVE-2019-25034
was published
May 24, 2022
Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc.
Critical
Unreviewed
CVE-2019-25032
was published
May 24, 2022
Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro.
Critical
Unreviewed
CVE-2019-25033
was published
May 24, 2022
Integer overflow in Mojo in Google Chrome prior to 90.0.4430.85 allowed a remote attacker who had...
Critical
Unreviewed
CVE-2021-21223
was published
May 24, 2022
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in stream_buffer...
Critical
Unreviewed
CVE-2021-31572
was published
May 24, 2022
The kernel in Amazon Web Services FreeRTOS before 10.4.3 has an integer overflow in queue.c for...
Critical
Unreviewed
CVE-2021-31571
was published
May 24, 2022
In the standard library in Rust before 1.52.0, the Zip implementation can report an incorrect...
Critical
Unreviewed
CVE-2021-28879
was published
May 24, 2022
Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code...
Critical
Unreviewed
CVE-2021-20308
was published
May 24, 2022
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP...
Critical
Unreviewed
CVE-2021-21783
was published
May 24, 2022
Due to incorrect string size calculations inside the preg_quote function, a large input string...
Critical
Unreviewed
CVE-2021-24025
was published
May 24, 2022
A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP...
Critical
Unreviewed
CVE-2020-13576
was published
May 24, 2022
Buffer over read can happen in video driver when playing clip with atomsize having value...
Critical
Unreviewed
CVE-2020-11216
was published
May 24, 2022
Possible integer overflow can occur when stream info update is called when total number of...
Critical
Unreviewed
CVE-2020-11197
was published
May 24, 2022
Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends...
Critical
Unreviewed
CVE-2020-11167
was published
May 24, 2022
Integer multiplication overflow resulting in lower buffer size allocation than expected causes...
Critical
Unreviewed
CVE-2020-11137
was published
May 24, 2022
Garmin Forerunner 235 before 8.20 is affected by: Integer Overflow. The component is: ConnectIQ...
Critical
Unreviewed
CVE-2020-27484
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10...
Critical
Unreviewed
CVE-2020-28371
was published
May 24, 2022
u'Integer overflow to buffer overflow occurs while playback of ASF clip having unexpected number...
Critical
Unreviewed
CVE-2020-11196
was published
May 24, 2022
u'Possible buffer overflow will occur in video while parsing mp4 clip with crafted esds atom size...
Critical
Unreviewed
CVE-2020-11184
was published
May 24, 2022
In exif_entry_get_value of exif-entry.c, there is a possible out of bounds write due to an...
Critical
Unreviewed
CVE-2020-0452
was published
May 24, 2022
u'Buffer over-read while processing received L2CAP packet due to lack of integer overflow check'...
Critical
Unreviewed
CVE-2020-11169
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API