Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

416 advisories

Loading
In OMA DRM, there is a possible memory corruption due to an integer overflow. This could lead to... Moderate Unreviewed
CVE-2021-0627 was published May 24, 2022
tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related... Moderate Unreviewed
CVE-2020-19490 was published May 24, 2022
An integer overflow vulnerability in the getUShort function of Exiv2 0.27.1 results in... Moderate Unreviewed
CVE-2020-19715 was published May 24, 2022
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the... Moderate Unreviewed
CVE-2021-34385 was published May 24, 2022
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the... Moderate Unreviewed
CVE-2021-34392 was published May 24, 2022
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel function where a lack of checks... Moderate Unreviewed
CVE-2021-34390 was published May 24, 2022
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the... Moderate Unreviewed
CVE-2021-34386 was published May 24, 2022
Resource leakage issue during dci client registration due to reference count is not decremented... Moderate Unreviewed
CVE-2020-11160 was published May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR... Moderate Unreviewed
CVE-2021-23215 was published May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in the DwaCompressor of OpenEXR... Moderate Unreviewed
CVE-2021-26260 was published May 24, 2022
An integer overflow leading to a heap-buffer overflow was found in OpenEXR in versions before 3.0... Moderate Unreviewed
CVE-2021-26945 was published May 24, 2022
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. An integer overflow problem... Moderate Unreviewed
CVE-2021-31807 was published May 24, 2022
A denial of service condition exists after an integer overflow in several IoT devices from CHIYU... Moderate Unreviewed
CVE-2021-31642 was published May 24, 2022
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug... Moderate Unreviewed
CVE-2021-31808 was published May 24, 2022
Telegram Android <7.1.0 (2090), Telegram iOS <7.1, and Telegram macOS <7.1 are affected by an... Moderate Unreviewed
CVE-2021-31319 was published May 24, 2022
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of... Moderate Unreviewed
CVE-2020-27769 was published May 24, 2022
An issue was discovered in the _send_secure_msg() function of Yubico yubihsm-shell through 2.0.3.... Moderate Unreviewed
CVE-2021-32489 was published May 24, 2022
There is a integer overflow in media_tools/av_parsers.c in the gf_avc_read_pps_bs_internal in... Moderate Unreviewed
CVE-2021-30022 was published May 24, 2022
There is a integer overflow in media_tools/av_parsers.c in the hevc_parse_slice_segment function... Moderate Unreviewed
CVE-2021-30014 was published May 24, 2022
Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a... Moderate Unreviewed
CVE-2021-29338 was published May 24, 2022
In decrypt_1_2 of CryptoPlugin.cpp, there is a possible out of bounds read due to an integer... Moderate Unreviewed
CVE-2021-0471 was published May 24, 2022
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds read due to... Moderate Unreviewed
CVE-2021-0436 was published May 24, 2022
A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An... Moderate Unreviewed
CVE-2021-3476 was published May 24, 2022
There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed... Moderate Unreviewed
CVE-2021-3474 was published May 24, 2022
There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted... Moderate Unreviewed
CVE-2021-3475 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database