GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,266
Erlang
31
GitHub Actions
21
Go
2,035
Maven
5,000+
npm
3,732
NuGet
662
pip
3,413
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
60 advisories
Filter by severity
In the Linux kernel, the following vulnerability has been resolved:
net: fix crash when config...
Moderate
Unreviewed
CVE-2024-50258
was published
Nov 9, 2024
The affected product is vulnerable to an integer underflow. An unauthenticated attacker could...
Moderate
Unreviewed
CVE-2024-52558
was published
Dec 6, 2024
In the Linux kernel, the following vulnerability has been resolved:
media: ar0521: don't...
Moderate
Unreviewed
CVE-2024-53081
was published
Nov 19, 2024
Crash in `max_pool3d` when size argument is 0 or negative
Moderate
CVE-2021-41196
was published
for
tensorflow
(pip)
Nov 10, 2021
Integer underflow in Frontier
Moderate
CVE-2022-21685
was published
for
pallet-evm-precompile-modexp
(Rust)
Jan 14, 2022
A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client...
Moderate
Unreviewed
CVE-2024-20474
was published
Oct 23, 2024
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to...
Moderate
Unreviewed
CVE-2015-8370
was published
May 14, 2022
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Ensure...
Moderate
Unreviewed
CVE-2024-46730
was published
Sep 18, 2024
In the Linux kernel, the following vulnerability has been resolved:
vt_ioctl: fix...
Moderate
Unreviewed
CVE-2022-48804
was published
Jul 16, 2024
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal,...
Moderate
Unreviewed
CVE-2020-24370
was published
May 24, 2022
Information disclosure while parsing sub-IE length during new IE generation.
Moderate
Unreviewed
CVE-2024-21466
was published
Jul 1, 2024
Sonos Era 100 SMB2 Message Handling Integer Underflow Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-5256
was published
Jun 6, 2024
Windows DWM Core Library Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-30008
was published
May 14, 2024
Windows Hyper-V Denial of Service Vulnerability
Moderate
Unreviewed
CVE-2024-30011
was published
May 14, 2024
In the Linux kernel, the following vulnerability has been resolved:
tpm: efi: Use local variable...
Moderate
Unreviewed
CVE-2021-46951
was published
Feb 27, 2024
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of...
Moderate
Unreviewed
CVE-2004-1002
was published
Apr 29, 2022
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote...
Moderate
Unreviewed
CVE-2005-1891
was published
May 1, 2022
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote...
Moderate
Unreviewed
CVE-2004-0816
was published
Apr 29, 2022
An integer overflow vulnerability exists in the NTRIP Stream Parsing functionality of GPSd 3.25.1...
Moderate
Unreviewed
CVE-2023-43628
was published
Dec 5, 2023
gnark unsoundness in variable comparison / non-unique binary decomposition
Moderate
CVE-2023-44378
was published
for
github.com/consensys/gnark
(Go)
Oct 4, 2023
Microsoft Office Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2021-31178
was published
May 24, 2022
In keyinstall, there is a possible information disclosure due to an integer overflow. This could...
Moderate
Unreviewed
CVE-2023-20635
was published
Mar 7, 2023
In wlan driver, there is a possible missing params check. This could lead to local denial of...
Moderate
Unreviewed
CVE-2022-38681
was published
Feb 12, 2023
Denial of service in geth
Moderate
CVE-2020-26242
was published
for
github.com/ethereum/go-ethereum
(Go)
Jun 29, 2021
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context...
Moderate
Unreviewed
CVE-2013-6424
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API