Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

60 advisories

Loading
Okio Signed to Unsigned Conversion Error vulnerability Moderate
CVE-2023-3635 was published for com.squareup.okio:okio (Maven) Jul 12, 2023
trettstadtnlb adrienpessu
A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive... High Unreviewed
CVE-2023-20006 was published Jun 28, 2023
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign... High Unreviewed
CVE-2023-0185 was published Apr 1, 2023
An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of... Critical Unreviewed
CVE-2022-43663 was published Mar 20, 2023
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large... High Unreviewed
CVE-2022-2639 was published Sep 2, 2022
The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which... High Unreviewed
CVE-2021-32996 was published Jan 11, 2022
An integer conversion error in Hermes bytecode generation, prior to commit... Critical Unreviewed
CVE-2022-40138 was published Oct 11, 2022
Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in... Critical Unreviewed
CVE-2019-14842 was published May 24, 2022
PowerDNS Authoritative daemon , all versions pdns 4.1.x before pdns 4.1.10, exiting when... Moderate Unreviewed
CVE-2019-10203 was published May 24, 2022
In libming 0.4.8, there is an integer signedness error vulnerability (left shift of a negative... Moderate Unreviewed
CVE-2018-5251 was published May 13, 2022
gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7... Moderate Unreviewed
CVE-2018-5711 was published May 13, 2022
The Mem_File_Reader::read_avail function in Data_Reader.cpp in the Game_Music_Emu library (aka... Moderate Unreviewed
CVE-2017-17446 was published May 13, 2022
An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function... High Unreviewed
CVE-2021-27219 was published May 24, 2022
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If... High Unreviewed
CVE-2021-27218 was published May 24, 2022
Incorrect cast in anymap Critical
CVE-2021-38187 was published for anymap (Rust) Aug 25, 2021
FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows... Moderate Unreviewed
CVE-2010-2807 was published May 13, 2022
An issue was discovered in the MQTT input plugin in Fluent Bit through 1.0.4. When this plugin... High Unreviewed
CVE-2019-9749 was published May 13, 2022
A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and... High Unreviewed
CVE-2021-27478 was published May 13, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... High Unreviewed
CVE-2022-27189 was published May 6, 2022
An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux... Moderate Unreviewed
CVE-2020-28588 was published May 24, 2022
An exploitable signed conversion vulnerability exists in the TextMaker document parsing... High Unreviewed
CVE-2020-13545 was published May 24, 2022
An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for... Critical Unreviewed
CVE-2021-36357 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21861 was published May 24, 2022
An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality... High Unreviewed
CVE-2021-21860 was published May 24, 2022
Trend Micro Password Manager (Consumer) version 5.0.0.1217 and below is vulnerable to an Integer... High Unreviewed
CVE-2021-32461 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database