Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,759
NuGet
678
pip
3,445
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,232 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: net/sctp: Prevent autoclose... Moderate Unreviewed
CVE-2024-57938 was published Jan 21, 2025
Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3,... High Unreviewed
CVE-2010-1883 was published May 14, 2022
Multiple integer overflows in the Microsoft (1) JScript 5.6 through 5.8 and (2) VBScript 5.6... High Unreviewed
CVE-2011-0663 was published May 13, 2022
In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Prevent integer... Moderate Unreviewed
CVE-2024-57890 was published Jan 15, 2025
In libebml before 1.4.5, an integer overflow in MemIOCallback.cpp can occur when reading or... Moderate Unreviewed
CVE-2023-52339 was published Jan 12, 2024
UTF32Encoding.cpp in POCO has a Poco::UTF32Encoding integer overflow and resultant stack buffer... Critical Unreviewed
CVE-2023-52389 was published Jan 27, 2024
In the Linux kernel, the following vulnerability has been resolved: io_uring: check for... Moderate Unreviewed
CVE-2024-53187 was published Dec 27, 2024
GDI+ Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21338 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21243 was published Jan 14, 2025
Windows Telephony Service Remote Code Execution Vulnerability High Unreviewed
CVE-2025-21244 was published Jan 14, 2025
An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2... Low Unreviewed
CVE-2024-46669 was published Jan 14, 2025
Integer overflow vulnerability during glTF model loading in the 3D engine module Impact:... High Unreviewed
CVE-2024-56451 was published Jan 8, 2025
Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot... High Unreviewed
CVE-2024-45555 was published Jan 6, 2025
Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics. High Unreviewed
CVE-2024-21454 was published Apr 1, 2024
Memory corruption while allocating memory for graphics. High Unreviewed
CVE-2024-21470 was published Apr 1, 2024
FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c. Moderate Unreviewed
CVE-2025-23022 was published Jan 10, 2025
Integer Overflow or Wraparound vulnerability in Cesanta Mongoose Web Server v7.14 allows an... High Unreviewed
CVE-2024-42384 was published Nov 18, 2024
FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based... Critical Unreviewed
CVE-2025-23016 was published Jan 10, 2025
An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker... Critical Unreviewed
CVE-2024-40765 was published Jan 9, 2025
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 2 of 2). Critical Unreviewed
CVE-2023-33864 was published Jun 7, 2023
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 1 of 2). Critical Unreviewed
CVE-2023-33863 was published Jun 7, 2023
In the Linux kernel, the following vulnerability has been resolved: um: Fix potential integer... Moderate Unreviewed
CVE-2024-53145 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: svcrdma: Address an integer... Moderate Unreviewed
CVE-2024-53151 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential... Moderate Unreviewed
CVE-2024-53146 was published Dec 24, 2024
FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an... Moderate Unreviewed
CVE-2024-36613 was published Jan 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database