Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

574 advisories

Loading
** DISPUTED ** An issue has been found in libIEC61850 v1.3. It is a SEGV in... High Unreviewed
CVE-2018-19093 was published May 13, 2022
A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains... High Unreviewed
CVE-2016-2123 was published May 13, 2022
Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c... High Unreviewed
CVE-2018-10840 was published May 13, 2022
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in... High Unreviewed
CVE-2016-9581 was published May 13, 2022
A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5... High Unreviewed
CVE-2018-4833 was published May 13, 2022
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point... High Unreviewed
CVE-2016-9586 was published May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer... High Unreviewed
CVE-2018-1123 was published May 13, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer... High Unreviewed
CVE-2018-14653 was published May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-28234 was published May 12, 2022
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919.... High Unreviewed
CVE-2022-1621 was published May 11, 2022
Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to... High Unreviewed
CVE-2022-1619 was published May 9, 2022
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This... High Unreviewed
CVE-2022-1381 was published Apr 19, 2022
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with... High Unreviewed
CVE-2022-29072 was published Apr 16, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the... High Unreviewed
CVE-2022-22188 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21944 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of... High Unreviewed
CVE-2021-40426 was published Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code... High Unreviewed
CVE-2022-21214 was published Apr 13, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2... High Unreviewed
CVE-2022-1240 was published Apr 7, 2022
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-1160 was published Mar 31, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database