Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,024
Maven
5,000+
npm
3,731
NuGet
662
pip
3,407
Pub
12
RubyGems
891
Rust
864
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

481 advisories

Loading
URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read (in uriParse*Ex*... Critical Unreviewed
CVE-2018-20721 was published May 13, 2022
The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have... Critical Unreviewed
CVE-2016-10195 was published May 13, 2022
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer... Critical Unreviewed
CVE-2017-9053 was published May 13, 2022
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In... Critical Unreviewed
CVE-2017-9054 was published May 13, 2022
An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata()... Critical Unreviewed
CVE-2017-9055 was published May 13, 2022
An out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for Linux, Windows, and Mac,... Critical Unreviewed
CVE-2017-5053 was published May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x),... Critical Unreviewed
CVE-2018-11058 was published May 13, 2022
An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum... Critical Unreviewed
CVE-2017-14457 was published May 13, 2022
A programming error exists in a way Randombit Botan cryptographic library version 2.0.1... Critical Unreviewed
CVE-2017-2801 was published May 13, 2022
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has... Critical Unreviewed
CVE-2019-9169 was published May 13, 2022
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain... Critical Unreviewed
CVE-2021-34085 was published May 12, 2022
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global... Critical Unreviewed
CVE-2021-3643 was published May 3, 2022
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior... Critical Unreviewed
CVE-2022-1296 was published Apr 12, 2022
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2... Critical Unreviewed
CVE-2022-1297 was published Apr 12, 2022
Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible... Critical Unreviewed
CVE-2022-1276 was published Apr 11, 2022
singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a... Critical Unreviewed
CVE-2022-28805 was published Apr 9, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'... Critical Unreviewed
CVE-2021-26623 was published Apr 3, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when... Critical Unreviewed
CVE-2021-35088 was published Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,... Critical Unreviewed
CVE-2021-35117 was published Apr 2, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component... Critical Unreviewed
CVE-2022-26280 was published Mar 30, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function... Critical Unreviewed
CVE-2021-33293 was published Mar 11, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this... Critical Unreviewed
CVE-2021-40050 was published Mar 11, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. Critical Unreviewed
CVE-2022-0717 was published Feb 24, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0623 was published Feb 18, 2022
Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43302 was published Feb 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database