GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,132
Erlang
29
GitHub Actions
19
Go
1,937
Maven
5,000+
npm
3,676
NuGet
642
pip
3,292
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
729 advisories
Filter by severity
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522...
High
Unreviewed
CVE-2019-5048
was published
May 24, 2022
A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522...
High
Unreviewed
CVE-2019-5050
was published
May 24, 2022
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when...
High
Unreviewed
CVE-2019-5045
was published
May 24, 2022
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when...
High
Unreviewed
CVE-2019-5046
was published
May 24, 2022
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell...
High
Unreviewed
CVE-2019-14816
was published
May 24, 2022
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the...
High
Unreviewed
CVE-2019-14814
was published
May 24, 2022
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.
Critical
Unreviewed
CVE-2019-5482
was published
May 24, 2022
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies...
Critical
Unreviewed
CVE-2019-10126
was published
May 24, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations...
High
Unreviewed
CVE-2019-6740
was published
May 24, 2022
A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in...
High
Unreviewed
CVE-2019-3846
was published
May 24, 2022
A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in...
High
Unreviewed
CVE-2019-5436
was published
May 24, 2022
A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via...
Critical
Unreviewed
CVE-2019-3568
was published
May 24, 2022
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-1733
was published
May 18, 2022
** DISPUTED ** plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly...
Moderate
Unreviewed
CVE-2013-3245
was published
May 17, 2022
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes...
High
Unreviewed
CVE-2022-1714
was published
May 14, 2022
** DISPUTED ** An issue has been found in libIEC61850 v1.3. It is a SEGV in...
High
Unreviewed
CVE-2018-19093
was published
May 13, 2022
A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains...
High
Unreviewed
CVE-2016-2123
was published
May 13, 2022
Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c...
High
Unreviewed
CVE-2018-10840
was published
May 13, 2022
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in...
High
Unreviewed
CVE-2016-9581
was published
May 13, 2022
A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5...
High
Unreviewed
CVE-2018-4833
was published
May 13, 2022
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point...
High
Unreviewed
CVE-2016-9586
was published
May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer...
High
Unreviewed
CVE-2018-1123
was published
May 13, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer...
High
Unreviewed
CVE-2018-14653
was published
May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012...
High
Unreviewed
CVE-2022-28234
was published
May 12, 2022
ProTip!
Advisories are also available from the
GraphQL API