Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

798 advisories

Loading
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21944 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the... High Unreviewed
CVE-2022-22188 was published Apr 15, 2022
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with... High Unreviewed
CVE-2022-29072 was published Apr 16, 2022
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This... High Unreviewed
CVE-2022-1381 was published Apr 19, 2022
All versions of GurumDDS are vulnerable to heap-based buffer overflow, which may cause a denial... Critical Unreviewed
CVE-2021-38439 was published May 6, 2022
Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to... High Unreviewed
CVE-2022-1619 was published May 9, 2022
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919.... High Unreviewed
CVE-2022-1621 was published May 11, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-28234 was published May 12, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer... High Unreviewed
CVE-2018-14653 was published May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer... High Unreviewed
CVE-2018-1123 was published May 13, 2022
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point... High Unreviewed
CVE-2016-9586 was published May 13, 2022
A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5... High Unreviewed
CVE-2018-4833 was published May 13, 2022
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in... High Unreviewed
CVE-2016-9581 was published May 13, 2022
Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c... High Unreviewed
CVE-2018-10840 was published May 13, 2022
A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains... High Unreviewed
CVE-2016-2123 was published May 13, 2022
** DISPUTED ** An issue has been found in libIEC61850 v1.3. It is a SEGV in... High Unreviewed
CVE-2018-19093 was published May 13, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes... High Unreviewed
CVE-2022-1714 was published May 14, 2022
** DISPUTED ** plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly... Moderate Unreviewed
CVE-2013-3245 was published May 17, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-1733 was published May 18, 2022
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via... Critical Unreviewed
CVE-2019-3568 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database