GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,282

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,227 advisories

Filter by severity

Sort by

Least recently updated

An exploitable integer overflow exists in the DPX loading functionality of the Blender open... High Unreviewed

CVE-2017-2903 was published May 13, 2022

An exploitable integer overflow exists in the TIFF loading functionality of the Blender open... High Unreviewed

CVE-2017-2899 was published May 13, 2022

An exploitable integer overflow exists in the RADIANCE loading functionality of the Blender open... High Unreviewed

CVE-2017-2904 was published May 13, 2022

An exploitable integer overflow exists in the bmp loading functionality of the Blender open... High Unreviewed

CVE-2017-2905 was published May 13, 2022

An exploitable integer overflow exists in the PNG loading functionality of the Blender open... High Unreviewed

CVE-2017-2900 was published May 13, 2022

An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of... High Unreviewed

CVE-2019-5040 was published May 24, 2022

PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and... Critical Unreviewed

CVE-2017-9120 was published May 14, 2022

In PVRSRVBridgePMRPDumpSymbolicAddr of the PowerVR kernel driver, a missing size check means... High Unreviewed

CVE-2021-0871 was published Sep 14, 2022

Integer overflow in the str_pad function in ext/standard/string.c in PHP before 7.0.4 allows... Critical Unreviewed

CVE-2016-4346 was published May 14, 2022

In libass 0.14.0, the `ass_outline_construct`'s call to `outline_stroke` causes a signed integer... High Unreviewed

CVE-2020-26682 was published May 24, 2022

Multiple integer overflows in imageop.c in the imageop module in Python 1.5.2 through 2.5.1 allow... High Unreviewed

CVE-2008-4864 was published May 14, 2022

Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can... High Unreviewed

CVE-2022-23772 was published Feb 12, 2022

Multiple integer overflows in php_zip.c in the zip extension in PHP before 7.0.6 allow remote... Critical Unreviewed

CVE-2016-3078 was published May 17, 2022

Integer overflow in the SplFileObject::fread function in spl_directory.c in the SPL extension in... Critical Unreviewed

CVE-2016-5770 was published May 14, 2022

Integer overflow in the xml_utf8_encode function in ext/xml/xml.c in PHP before 7.0.4 allows... Critical Unreviewed

CVE-2016-4344 was published May 17, 2022

Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x... High Unreviewed

CVE-2015-8080 was published May 14, 2022

An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 4... High Unreviewed

CVE-2019-5089 was published May 24, 2022

An integer buffer overflow in the Nginx webserver of ExpressVPN Router version 1 allows remote... High Unreviewed

CVE-2020-29238 was published May 24, 2022

Exim 4 before 4.92 allows Integer Overflow to Buffer Overflow, in which an unauthenticated remote... Critical Unreviewed

CVE-2020-28020 was published May 24, 2022

An integer overflow was addressed with improved input validation. This issue is fixed in Security... Critical Unreviewed

CVE-2022-26775 was published May 27, 2022

epub2txt2 v2.04 was discovered to contain an integer overflow via the function bug in... Moderate Unreviewed

CVE-2022-29358 was published May 26, 2022

Integer overflow in download manager in Google Chrome prior to 75.0.3770.80 allowed a remote... High Unreviewed

CVE-2019-5829 was published May 24, 2022

An integer overflow flaw was found in libtiff that exists in the tif_getimage.c file. This flaw... High Unreviewed

CVE-2020-35523 was published May 24, 2022

A heap-based buffer overflow vulnerability exists in the PSD read_icc_icCurve_data functionality... Critical Unreviewed

CVE-2021-21795 was published May 24, 2022

Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding... High Unreviewed

CVE-2021-21855 was published May 24, 2022

Previous 1 2 3 4 5 … 89 90 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,227 advisories