Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,778
Maven
5,000+
npm
4,379
NuGet
770
pip
4,150
Pub
12
RubyGems
963
Rust
1,071
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,498 advisories

Loading
GIMP PNM File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2025-14422 was published Dec 24, 2025
NSF Unidata NetCDF-C NC Variable Integer Overflow Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-14933 was published Dec 23, 2025
An integer overflow in the RTPS protocol implementation of OpenDDS DDS before v3.33.0 allows... High Unreviewed
CVE-2025-67111 was published Dec 23, 2025
An integer overflow in eProsima Fast-DDS v3.3 allows attackers to cause a Denial of Service (DoS)... High Unreviewed
CVE-2025-65865 was published Dec 23, 2025
A heap-based buffer overflow vulnerability exists in the PDF parsing of Foxit PDF Reader when... High Unreviewed
CVE-2025-66499 was published Dec 19, 2025
Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in... High Unreviewed
CVE-2025-63757 was published Dec 18, 2025
Memory corruption while routing GPR packets between user and root when handling large data packet. High Unreviewed
CVE-2025-47323 was published Dec 18, 2025
An integer overflow was addressed by adopting 64-bit timestamps. This issue is fixed in macOS... High Unreviewed
CVE-2025-46285 was published Dec 12, 2025
Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows... Low Unreviewed
CVE-2023-29144 was published Dec 12, 2025
In GetTachyonCommand of tachyon_server_common.h, there is a possible out of bounds write due to... High Unreviewed
CVE-2025-36936 was published Dec 11, 2025
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service ... Moderate Unreviewed
CVE-2025-14512 was published Dec 11, 2025
An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before... High Unreviewed
CVE-2025-65803 was published Dec 10, 2025
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap... Moderate Unreviewed
CVE-2025-14087 was published Dec 10, 2025
DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound... Moderate Unreviewed
CVE-2025-64894 was published Dec 9, 2025
DNG SDK versions 1.7.0 and earlier are affected by an Integer Overflow or Wraparound... High Unreviewed
CVE-2025-64783 was published Dec 9, 2025
An integer overflow vulnerability exists in the write method of the Buffer class in Robocode... Critical Unreviewed
CVE-2025-14308 was published Dec 9, 2025
In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer... High Unreviewed
CVE-2025-48637 was published Dec 8, 2025
An integer overflow in the case of failed ACME certificate renewal leads, after a number of... High Unreviewed
CVE-2025-55753 was published Dec 5, 2025
KissFFT versions prior to the fix commit 1b083165 contain an integer overflow in kiss_fft_alloc()... High Unreviewed
CVE-2025-34297 was published Dec 1, 2025
Integer Overflow or Wraparound vulnerability in Avast Antivirus (25.1.981.6) on Windows allows... Critical Unreviewed
CVE-2025-3500 was published Dec 1, 2025
node-forge is vulnerable to ASN.1 OID Integer Truncation Moderate
CVE-2025-66030 was published for node-forge (npm) Nov 26, 2025
wodzen
Credited to wodzen
Tinyproxy through 1.11.2 contains an integer overflow vulnerability in the strip_return_port()... Moderate Unreviewed
CVE-2025-63938 was published Nov 26, 2025
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer... High Unreviewed
CVE-2025-13601 was published Nov 26, 2025
A flaw was found in WebKitGTK and WPE WebKit. This vulnerability allows an out-of-bounds read and... High Unreviewed
CVE-2025-13502 was published Nov 25, 2025
Improper input validation within the XOCL driver may allow a local attacker to generate an... High Unreviewed
CVE-2025-52538 was published Nov 24, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database