Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

60 advisories

Loading
Denial of service in geth Moderate
CVE-2020-26242 was published for github.com/ethereum/go-ethereum (Go) Jun 29, 2021
Crash in `max_pool3d` when size argument is 0 or negative Moderate
CVE-2021-41196 was published for tensorflow (pip) Nov 10, 2021
Integer Underflow vulnerability in Mitsubishi Electric GX Works2 versions 1.606G and prior,... Moderate Unreviewed
CVE-2021-20607 was published Dec 18, 2021
Integer underflow in Frontier Moderate
CVE-2022-21685 was published for pallet-evm-precompile-modexp (Rust) Jan 14, 2022
A PV guest could DoS Xen while unmapping a grant To address XSA-380, reference counting was... Moderate Unreviewed
CVE-2022-23034 was published Jan 26, 2022
An integer underflow in the DDS loader of Blender leads to an out-of-bounds read, possibly... Moderate Unreviewed
CVE-2022-0544 was published Feb 25, 2022
In preloader (usb), there is a possible out of bounds write due to a integer underflow. This... Moderate Unreviewed
CVE-2022-20073 was published Apr 12, 2022
Integer underflow in the firewall logging rules for iptables in Linux before 2.6.8 allows remote... Moderate Unreviewed
CVE-2004-0816 was published Apr 29, 2022
Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2004-1002 was published Apr 29, 2022
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote... Moderate Unreviewed
CVE-2005-1891 was published May 1, 2022
An exploitable integer underflow vulnerability exists in the ZigBee firmware update routine of... Moderate Unreviewed
CVE-2018-3926 was published May 13, 2022
Integer underflow in LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2, when the... Moderate Unreviewed
CVE-2015-5212 was published May 13, 2022
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context... Moderate Unreviewed
CVE-2013-6424 was published May 13, 2022
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't... Moderate Unreviewed
CVE-2019-9133 was published May 13, 2022
Integer underflow in glyph handling in FreeType before 2.4.0 allows remote attackers to cause a... Moderate Unreviewed
CVE-2010-2497 was published May 13, 2022
Integer underflow in the asfrtp_parse_packet function in libavformat/rtpdec_asf.c in FFmpeg... Moderate Unreviewed
CVE-2011-4031 was published May 13, 2022
Integer underflow in the pixman_trapezoid_valid macro in pixman.h in Pixman before 0.32.0, as... Moderate Unreviewed
CVE-2013-6425 was published May 13, 2022
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed
CVE-2017-8906 was published May 13, 2022
The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10... Moderate Unreviewed
CVE-2017-8924 was published May 14, 2022
Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in... Moderate Unreviewed
CVE-2014-8768 was published May 14, 2022
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to... Moderate Unreviewed
CVE-2015-8370 was published May 14, 2022
While processing a debug log event from firmware in all Android releases from CAF using the Linux... Moderate Unreviewed
CVE-2018-5865 was published May 14, 2022
Integer underflow in the mov_read_default function in libavformat/mov.c in FFmpeg before 2.4.6... Moderate Unreviewed
CVE-2015-1208 was published May 14, 2022
archival/libarchive/decompress_unlzma.c in BusyBox 1.27.2 has an Integer Underflow that leads to... Moderate Unreviewed
CVE-2017-15874 was published May 17, 2022
An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for... Moderate Unreviewed
CVE-2017-13666 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database