Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc`... Moderate Unreviewed
CVE-2020-14378 was published May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed
CVE-2020-14361 was published May 24, 2022
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to... Moderate Unreviewed
CVE-2020-14362 was published May 24, 2022
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension... Moderate Unreviewed
CVE-2020-14346 was published May 24, 2022
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal,... Moderate Unreviewed
CVE-2020-24370 was published May 24, 2022
An exploitable denial of service vulnerability exists in the freeDiameter functionality of... Moderate Unreviewed
CVE-2020-6098 was published May 24, 2022
napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0,... High Unreviewed
CVE-2020-8174 was published May 24, 2022
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core).... Moderate Unreviewed
CVE-2020-14699 was published May 24, 2022
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly... High Unreviewed
CVE-2020-1400 was published May 24, 2022
An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU... High Unreviewed
CVE-2020-6096 was published May 24, 2022
An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa... Moderate Unreviewed
CVE-2019-5148 was published May 24, 2022
A freed memory access vulnerability exists in the SVG Marker Element feature of Apple Safari's... High Unreviewed
CVE-2019-5144 was published May 24, 2022
Buffer overflow can occur while processing non-standard NAN message from user space. in... Moderate Unreviewed
CVE-2019-2297 was published May 24, 2022
An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of... High Unreviewed
CVE-2019-5099 was published May 24, 2022
A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive... High Unreviewed
CVE-2019-12678 was published May 24, 2022
An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an... Critical Unreviewed
CVE-2019-14532 was published May 24, 2022
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a... High Unreviewed
CVE-2019-14523 was published May 24, 2022
An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing... Critical Unreviewed
CVE-2019-14199 was published May 24, 2022
An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed
CVE-2019-5459 was published May 24, 2022
An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed
CVE-2019-13602 was published May 24, 2022
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an... Moderate Unreviewed
CVE-2019-1628 was published May 24, 2022
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed
CVE-2019-9755 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream info from... Critical Unreviewed
CVE-2019-2244 was published May 24, 2022
Possible integer underflow can happen when calculating length of elementary stream map from... Critical Unreviewed
CVE-2019-2245 was published May 24, 2022
Improper input validation on input data which is used to locate and copy the additional IEs in... Critical Unreviewed
CVE-2018-11930 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database