Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

427 advisories

Loading
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by an... Moderate Unreviewed
CVE-2021-31319 was published May 24, 2022
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of... Moderate Unreviewed
CVE-2020-27769 was published May 24, 2022
An issue was discovered in the _send_secure_msg() function of Yubico yubihsm-shell through 2.0.3.... Moderate Unreviewed
CVE-2021-32489 was published May 24, 2022
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function... Moderate Unreviewed
CVE-2021-30014 was published May 24, 2022
There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in... Moderate Unreviewed
CVE-2021-30022 was published May 24, 2022
Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a... Moderate Unreviewed
CVE-2021-29338 was published May 24, 2022
In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2021-0471 was published May 24, 2022
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds read due to... Moderate Unreviewed
CVE-2021-0436 was published May 24, 2022
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An... Moderate Unreviewed
CVE-2021-3476 was published May 24, 2022
There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted... Moderate Unreviewed
CVE-2021-3475 was published May 24, 2022
There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed... Moderate Unreviewed
CVE-2021-3474 was published May 24, 2022
In the FingerTipS touch screen driver, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2021-0458 was published May 24, 2022
Multiple integer overflow parameters were found in the web administration panel on NETGEAR... Moderate Unreviewed
CVE-2020-35230 was published May 24, 2022
In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at... Moderate Unreviewed
CVE-2020-27768 was published May 24, 2022
In kisd, there is a possible out of bounds write due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2021-0355 was published May 24, 2022
In decode_Huffman of JBig2_SddProc.cpp, there is a possible out of bounds write due to an integer... Moderate Unreviewed
CVE-2020-0495 was published May 24, 2022
APT had several integer overflows and underflows while parsing .deb packages, aka GHSL-2020-168... Moderate Unreviewed
CVE-2020-27350 was published May 24, 2022
In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which... Moderate Unreviewed
CVE-2020-27754 was published May 24, 2022
A floating point math calculation in ScaleAnyToQuantum() of /MagickCore/quantum-private.h could... Moderate Unreviewed
CVE-2020-27757 was published May 24, 2022
A flaw was found in ImageMagick in MagickCore/quantum-export.c. An attacker who submits a crafted... Moderate Unreviewed
CVE-2020-27751 was published May 24, 2022
A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is... Moderate Unreviewed
CVE-2020-27758 was published May 24, 2022
In the CropImage() and CropImageToTiles() routines of MagickCore/transform.c, rounding... Moderate Unreviewed
CVE-2020-25675 was published May 24, 2022
In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), InterpolatePixelChannels(), and... Moderate Unreviewed
CVE-2020-25676 was published May 24, 2022
There are 4 places in HistogramCompare() in MagickCore/histogram.c where an integer overflow is... Moderate Unreviewed
CVE-2020-25666 was published May 24, 2022
A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is... Moderate Unreviewed
CVE-2020-27772 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database