Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,226
Erlang
31
GitHub Actions
19
Go
1,991
Maven
5,000+
npm
3,708
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

297 advisories

Loading
An integer overflow at an unserialize_uep memory allocation site would occur for vim before patch... Critical Unreviewed
CVE-2017-6350 was published May 14, 2022
An integer overflow in "createImageBitmap()" was reported through the Pwn2Own contest. The fix... Critical Unreviewed
CVE-2017-5428 was published May 14, 2022
An integer overflow during the parsing of XML using the Expat library. This vulnerability affects... Critical Unreviewed
CVE-2016-9063 was published May 14, 2022
An error in argument length checking in JavaScript, leading to potential integer overflows or... Critical Unreviewed
CVE-2016-5297 was published May 14, 2022
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile SD 210/SD 212/SD... Critical Unreviewed
CVE-2017-8275 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400... Critical Unreviewed
CVE-2015-9133 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9160 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2015-9190 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2015-9201 was published May 14, 2022
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that... Critical Unreviewed
CVE-2017-5340 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2015-9220 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2016-10480 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and... Critical Unreviewed
CVE-2016-10491 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 400... Critical Unreviewed
CVE-2015-9219 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 617... Critical Unreviewed
CVE-2016-10478 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210... Critical Unreviewed
CVE-2016-10475 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 210... Critical Unreviewed
CVE-2016-10407 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Small Cell SoC,... Critical Unreviewed
CVE-2016-10412 was published May 14, 2022
In wma_peer_info_event_handler() in Android for MSM, Firefox OS for MSM, and QRD Android before... Critical Unreviewed
CVE-2017-17766 was published May 14, 2022
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile,... Critical Unreviewed
CVE-2016-10494 was published May 14, 2022
Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code... Critical Unreviewed
CVE-2014-5044 was published May 14, 2022
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2... Critical Unreviewed
CVE-2017-5804 was published May 14, 2022
Integer overflow in the ndn_parse_sequence function in CCN-lite before 2.00 allows context... Critical Unreviewed
CVE-2017-12470 was published May 14, 2022
Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have... Critical Unreviewed
CVE-2017-12465 was published May 14, 2022
Multiple integer overflows in the (1) vnc_connection_server_message and (2) vnc_color_map_set... Critical Unreviewed
CVE-2017-5885 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database