Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,779
Erlang
36
GitHub Actions
29
Go
2,337
Maven
5,000+
npm
3,971
NuGet
713
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

101 advisories

Loading
When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate... High Unreviewed
CVE-2025-0395 was published Jan 22, 2025
quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading... Moderate Unreviewed
CVE-2025-46688 was published Apr 27, 2025
In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after... Low Unreviewed
CVE-2025-43965 was published Apr 23, 2025
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-32630 was published Dec 5, 2022
In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled ... Low Unreviewed
CVE-2025-46393 was published Apr 23, 2025
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14934 was published May 13, 2022
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0569 was published May 13, 2022
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000... High Unreviewed
CVE-2024-30405 was published Apr 12, 2024
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes... High Unreviewed
CVE-2022-4378 was published Jan 5, 2023
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local... Moderate Unreviewed
CVE-2004-0940 was published Apr 29, 2022
In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg(4) could... High Unreviewed
CVE-2025-30334 was published Mar 20, 2025
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message... Moderate Unreviewed
CVE-2024-26752 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsc: Fix the macro... Moderate Unreviewed
CVE-2024-26721 was published Apr 3, 2024
Paragon Partition Manager version 7.9.1 contains an arbitrary kernel memory vulnerability... High Unreviewed
CVE-2025-0288 was published Mar 3, 2025
In wipe_ns_memory of nsmemwipe.c, there is a possible incorrect size calculation due to a logic... Moderate Unreviewed
CVE-2024-27237 was published Mar 11, 2024
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution... Critical Unreviewed
CVE-2023-0568 was published Feb 16, 2023
An integer overflow was found in the __vsyslog_internal function of the glibc library. This... Moderate Unreviewed
CVE-2023-6780 was published Jan 31, 2024
An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed
CVE-2024-23606 was published Feb 20, 2024
CWE-131: Incorrect Calculation of Buffer Size vulnerability exists that could cause Denial-of... High Unreviewed
CVE-2024-11425 was published Jan 17, 2025
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a... High Unreviewed
CVE-2005-2103 was published May 1, 2022
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a ... Moderate Unreviewed
CVE-2004-0747 was published Apr 29, 2022
In SiWx91x devices, the SHA2/224 algorithm returns a hash of 256 bits instead of 224 bits. This... High Unreviewed
CVE-2024-8361 was published Jan 7, 2025
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to... High Unreviewed
CVE-2017-13315 was published Nov 19, 2024
In OpenBSD 7.4 before errata 002 and OpenBSD 7.3 before errata 019, a network buffer that had to... High Unreviewed
CVE-2023-52558 was published Mar 1, 2024
A negative-size-param in tsMuxer version nightly-2024-04-05-01-53-02 allows attackers to cause... Moderate Unreviewed
CVE-2024-49776 was published Nov 15, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database