Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,714
Erlang
34
GitHub Actions
28
Go
2,301
Maven
5,000+
npm
3,942
NuGet
711
pip
3,711
Pub
12
RubyGems
920
Rust
960
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

512 advisories

Loading
In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer... Moderate Unreviewed
CVE-2025-48174 was published May 16, 2025
In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications... Moderate Unreviewed
CVE-2025-48175 was published May 16, 2025
In sensor driver, there is a possible out of bounds write due to a missing bounds check. This... Moderate Unreviewed
CVE-2022-39105 was published Oct 15, 2022
In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: Fix integer... Moderate Unreviewed
CVE-2022-49885 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Prevent integer... Moderate Unreviewed
CVE-2025-22080 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix a couple... Moderate Unreviewed
CVE-2025-22081 was published Apr 16, 2025
In the Linux kernel, the following vulnerability has been resolved: udp: Fix multiple... Moderate Unreviewed
CVE-2025-22059 was published Apr 16, 2025
ping in iputils through 20240905 allows a denial of service (application error or incorrect data... Moderate Unreviewed
CVE-2025-47268 was published May 5, 2025
In Expat (aka libexpat) before 2.4.5, there is an integer overflow in storeRawNames. Moderate Unreviewed
CVE-2022-25315 was published Feb 19, 2022
An integer overflow was addressed with improved input validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-31203 was published Apr 29, 2025
The get_next_block function in archival/libarchive/decompress_bunzip2.c in BusyBox 1.27.2 has an... Moderate Unreviewed
CVE-2017-15873 was published May 13, 2022
In the function ReadTXTImage() in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might... Moderate Unreviewed
CVE-2017-14173 was published May 13, 2022
An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx... Moderate Unreviewed
CVE-2017-14051 was published May 14, 2022
Integer overflow in the INT123_parse_new_id3 function in the ID3 parser in mpg123 before 1.25.5... Moderate Unreviewed
CVE-2017-12797 was published May 17, 2022
The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3... Moderate Unreviewed
CVE-2017-7542 was published May 13, 2022
An integer overflow vulnerability in the ptp_unpack_EOS_CustomFuncEx function of the ptp-pack.c... Moderate Unreviewed
CVE-2017-9831 was published May 13, 2022
A denial of service vulnerability in libstagefright in Mediaserver could enable an attacker to... Moderate Unreviewed
CVE-2017-0603 was published May 13, 2022
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows... Moderate Unreviewed
CVE-2017-6838 was published May 17, 2022
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote... Moderate Unreviewed
CVE-2017-6839 was published May 17, 2022
Integer overflow in the emulated_apdu_from_guest function in usb/dev-smartcard-reader.c in Quick... Moderate Unreviewed
CVE-2017-5898 was published May 13, 2022
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial... Moderate Unreviewed
CVE-2017-6312 was published May 13, 2022
Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2)... Moderate Unreviewed
CVE-2016-9262 was published May 14, 2022
Integer overflow in libavcodec/mpeg12dec.c in libav 11.8 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-9822 was published May 17, 2022
Integer overflow in libavcodec/mpegvideo_parser.c in libav 11.8 allows remote attackers to cause... Moderate Unreviewed
CVE-2016-9821 was published May 17, 2022
Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a... Moderate Unreviewed
CVE-2016-9824 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database