Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

204 advisories

Loading
An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function... Critical Unreviewed
CVE-2019-10053 was published May 24, 2022
An integer underflow may occur due to lack of check when received data length from... High Unreviewed
CVE-2017-18278 was published May 24, 2022
Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed
CVE-2014-9883 was published May 17, 2022
In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed
CVE-2017-7367 was published May 17, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed
CVE-2017-3034 was published May 17, 2022
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow... Critical Unreviewed
CVE-2015-2311 was published May 17, 2022
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed
CVE-2017-13666 was published May 17, 2022
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed
CVE-2017-14796 was published May 17, 2022
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to... Moderate Unreviewed
CVE-2017-15874 was published May 17, 2022
Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics... Critical Unreviewed
CVE-2016-10166 was published May 17, 2022
chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and... High Unreviewed
CVE-2016-2316 was published May 17, 2022
An integer underflow has been identified in the unicode_to_utf8() function in tnef 1.4.14. This... Critical Unreviewed
CVE-2017-8911 was published May 17, 2022
Integer underflow in the mov_read_default function in libavformat/mov.c in FFmpeg before 2.4.6... Moderate Unreviewed
CVE-2015-1208 was published May 14, 2022
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed
CVE-2016-10268 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9198 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile... Critical Unreviewed
CVE-2015-9167 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9129 was published May 14, 2022
Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, -... High Unreviewed
CVE-2017-14496 was published May 14, 2022
In the function csr_update_fils_params_rso(), insufficient validation on a key length can result... High Unreviewed
CVE-2018-5850 was published May 14, 2022
While processing a debug log event from firmware in all Android releases from CAF using the Linux... Moderate Unreviewed
CVE-2018-5865 was published May 14, 2022
An wrong logical check identified in the transferFrom function of a smart contract implementation... High Unreviewed
CVE-2018-12230 was published May 14, 2022
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to... Moderate Unreviewed
CVE-2015-8370 was published May 14, 2022
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in... Moderate Unreviewed
CVE-2014-8768 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11301 was published May 14, 2022
Improper input validation in Bluetooth Controller function can lead to possible memory corruption... High Unreviewed
CVE-2017-18170 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database