Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103 advisories

Loading
An Incorrect Calculation of Buffer Size vulnerability in the routing protocol daemon (rpd) of... High Unreviewed
CVE-2025-52955 was published Jul 11, 2025
Memory corruption while processing video packets received from video firmware. High Unreviewed
CVE-2025-27042 was published Jul 8, 2025
When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate... High Unreviewed
CVE-2025-0395 was published Jan 22, 2025
quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading... Moderate Unreviewed
CVE-2025-46688 was published Apr 27, 2025
In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after... Low Unreviewed
CVE-2025-43965 was published Apr 23, 2025
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-32630 was published Dec 5, 2022
In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled ... Low Unreviewed
CVE-2025-46393 was published Apr 23, 2025
process_debug_info in dwarf.c in the Binary File Descriptor (BFD) library (aka libbfd), as... Moderate Unreviewed
CVE-2017-14934 was published May 13, 2022
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local... High Unreviewed
CVE-2017-0569 was published May 13, 2022
An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000... High Unreviewed
CVE-2024-30405 was published Apr 12, 2024
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes... High Unreviewed
CVE-2022-4378 was published Jan 5, 2023
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local... Moderate Unreviewed
CVE-2004-0940 was published Apr 29, 2022
In OpenBSD 7.6 before errata 006 and OpenBSD 7.5 before errata 015, traffic sent over wg(4) could... High Unreviewed
CVE-2025-30334 was published Mar 20, 2025
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message... Moderate Unreviewed
CVE-2024-26752 was published Apr 3, 2024
In the Linux kernel, the following vulnerability has been resolved: drm/i915/dsc: Fix the macro... Moderate Unreviewed
CVE-2024-26721 was published Apr 3, 2024
Paragon Partition Manager version 7.9.1 contains an arbitrary kernel memory vulnerability... High Unreviewed
CVE-2025-0288 was published Mar 3, 2025
In wipe_ns_memory of nsmemwipe.c, there is a possible incorrect size calculation due to a logic... Moderate Unreviewed
CVE-2024-27237 was published Mar 11, 2024
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, core path resolution... Critical Unreviewed
CVE-2023-0568 was published Feb 16, 2023
An integer overflow was found in the __vsyslog_internal function of the glibc library. This... Moderate Unreviewed
CVE-2023-6780 was published Jan 31, 2024
An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed
CVE-2024-23606 was published Feb 20, 2024
CWE-131: Incorrect Calculation of Buffer Size vulnerability exists that could cause Denial-of... High Unreviewed
CVE-2024-11425 was published Jan 17, 2025
Buffer overflow in the AIM and ICQ module in Gaim before 1.5.0 allows remote attackers to cause a... High Unreviewed
CVE-2005-2103 was published May 1, 2022
Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a ... Moderate Unreviewed
CVE-2004-0747 was published Apr 29, 2022
In SiWx91x devices, the SHA2/224 algorithm returns a hash of 256 bits instead of 224 bits. This... High Unreviewed
CVE-2024-8361 was published Jan 7, 2025
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to... High Unreviewed
CVE-2017-13315 was published Nov 19, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database