GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,129 advisories
Filter by severity
lz4-sys vulnerable to memory corruption via issue in liblz4
Critical
GHSA-9q5j-jm53-v7vr
was published
for
lz4-sys
(Rust)
Sep 1, 2022
High severity vulnerability that affects Microsoft.ChakraCore
High
CVE-2019-0639
was published
for
Microsoft.ChakraCore
(NuGet)
Apr 9, 2019
Integer Overflow or Wraparound in TensorFlow
Moderate
GHSA-wcv5-vrvr-3rx2
was published
for
tensorflow
(pip)
Feb 9, 2022
Integer Overflow or Wraparound in libxml2 affects Nokogiri
High
GHSA-cgx6-hpwq-fhv5
was published
for
nokogiri
(RubyGems)
May 18, 2022
`CHECK` failure in depthwise ops via overflows
Moderate
GHSA-mw6j-hh29-h379
was published
for
tensorflow
(pip)
May 25, 2022
Integer overflow in the padding implementation in the opus_packet_parse_impl function in src...
Moderate
Unreviewed
CVE-2013-0899
was published
May 14, 2022
Integer overflow in publify_core
Critical
CVE-2022-1812
was published
for
publify_core
(RubyGems)
Jan 14, 2023
Integer Overflow or Wraparound in Microweber
High
CVE-2022-0913
was published
for
microweber/microweber
(Composer)
Mar 12, 2022
Integer Overflow in microweber
High
CVE-2022-0968
was published
for
microweber/microweber
(Composer)
Mar 16, 2022
Denial of service in microweber
High
CVE-2022-0961
was published
for
microweber/microweber
(Composer)
Mar 16, 2022
A denial of service vulnerability exists in the netserver recv_command functionality of reolink...
High
Unreviewed
CVE-2022-21801
was published
Jan 29, 2022
An integer overflow in the processing of loaded 2D images leads to a write-what-where...
High
Unreviewed
CVE-2022-0545
was published
Feb 25, 2022
A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds...
High
Unreviewed
CVE-2022-0546
was published
Feb 25, 2022
Integer Overflow or Wraparound in Microweber
High
CVE-2022-1036
was published
for
microweber/microweber
(Composer)
Mar 23, 2022
Mojang Bedrock Dedicated Server 1.18.2 is affected by an integer overflow leading to a bound...
Critical
Unreviewed
CVE-2022-23884
was published
Mar 29, 2022
NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this...
High
Unreviewed
CVE-2022-21821
was published
Mar 30, 2022
The vulnerability function is enabled when the streamer service related to the AfreecaTV...
High
Unreviewed
CVE-2020-7881
was published
Nov 27, 2021
In libstagefright, there is a possible out of bounds write due to an integer overflow. This could...
High
Unreviewed
CVE-2021-39759
was published
Mar 31, 2022
An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a...
High
Unreviewed
CVE-2022-0998
was published
Mar 31, 2022
GPAC mp4box 1.1.0-DEV-rev1663-g881c6a94a-master is vulnerable to Integer Overflow.
Moderate
Unreviewed
CVE-2022-27148
was published
Apr 9, 2022
Integer overflow in Mojo in Google Chrome prior to 98.0.4758.102 allowed a remote attacker to...
High
Unreviewed
CVE-2022-0608
was published
Apr 6, 2022
Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds...
High
Unreviewed
CVE-2022-27833
was published
Apr 12, 2022
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to...
High
Unreviewed
CVE-2022-20075
was published
Apr 12, 2022
ProTip!
Advisories are also available from the
GraphQL API