GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,087
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,086
Maven 5,251
npm 3,747
NuGet 674
pip 3,436
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,553

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

116 advisories

Filter by severity

Sort by

Least recently updated

An exploitable integer underflow vulnerability exists in the CMP-parsing functionality of... High Unreviewed

CVE-2019-5099 was published May 24, 2022

A vulnerability in the Session Initiation Protocol (SIP) inspection module of Cisco Adaptive... High Unreviewed

CVE-2019-12678 was published May 24, 2022

An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a... High Unreviewed

CVE-2019-14523 was published May 24, 2022

An Integer underflow in VLC Media Player versions < 3.0.7 leads to an out-of-band read. High Unreviewed

CVE-2019-5459 was published May 24, 2022

An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media... High Unreviewed

CVE-2019-13602 was published May 24, 2022

An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially... High Unreviewed

CVE-2019-9755 was published May 24, 2022

An integer underflow may occur due to lack of check when received data length from... High Unreviewed

CVE-2017-18278 was published May 24, 2022

Integer overflow in drivers/char/diag/diag_dci.c in the Qualcomm components in Android before... High Unreviewed

CVE-2014-9883 was published May 17, 2022

In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability... High Unreviewed

CVE-2017-7367 was published May 17, 2022

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and... High Unreviewed

CVE-2017-3034 was published May 17, 2022

The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a... High Unreviewed

CVE-2017-14796 was published May 17, 2022

chan_sip in Asterisk Open Source 1.8.x, 11.x before 11.21.1, 12.x, and 13.x before 13.7.1 and... High Unreviewed

CVE-2016-2316 was published May 17, 2022

tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer... High Unreviewed

CVE-2016-10268 was published May 14, 2022

Integer underflow in the add_pseudoheader function in dnsmasq before 2.78 , when the --add-mac, -... High Unreviewed

CVE-2017-14496 was published May 14, 2022

In the function csr_update_fils_params_rso(), insufficient validation on a key length can result... High Unreviewed

CVE-2018-5850 was published May 14, 2022

An wrong logical check identified in the transferFrom function of a smart contract implementation... High Unreviewed

CVE-2018-12230 was published May 14, 2022

In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed

CVE-2018-11301 was published May 14, 2022

Improper input validation in Bluetooth Controller function can lead to possible memory corruption... High Unreviewed

CVE-2017-18170 was published May 14, 2022

Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0... High Unreviewed

CVE-2014-0497 was published May 14, 2022

An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0... High Unreviewed

CVE-2018-16601 was published May 14, 2022

GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (excessive memory... High Unreviewed

CVE-2017-14997 was published May 14, 2022

In MP4v2 2.0.0, there is an integer underflow (with resultant memory corruption) when parsing... High Unreviewed

CVE-2018-14325 was published May 13, 2022

Integer underflow in the ksba_oid_to_str function in Libksba before 1.3.2, as used in GnuPG,... High Unreviewed

CVE-2014-9087 was published May 13, 2022

Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel... High Unreviewed

CVE-2011-1770 was published May 13, 2022

Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux... High Unreviewed

CVE-2011-2497 was published May 13, 2022

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

116 advisories