Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,331
Erlang
31
GitHub Actions
21
Go
2,093
Maven
5,000+
npm
3,756
NuGet
678
pip
3,444
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

106 advisories

Loading
An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of... High Unreviewed
CVE-2021-21773 was published May 24, 2022
In throttling, there is a possible out of bounds write due to an incorrect calculation of buffer... Moderate Unreviewed
CVE-2022-32624 was published Dec 5, 2022
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13... Critical Unreviewed
CVE-2023-5941 was published Nov 8, 2023
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by... High Unreviewed
CVE-2001-0249 was published Apr 30, 2022
FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a... Moderate Unreviewed
CVE-2001-0334 was published Apr 30, 2022
Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via... High Unreviewed
CVE-2004-1363 was published Apr 29, 2022
A buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A remote,... Critical Unreviewed
CVE-2024-23621 was published Jan 26, 2024
A stack-based buffer overflow exists in IBM Merge Healthcare eFilm Workstation license server. A... Critical Unreviewed
CVE-2024-23622 was published Jan 26, 2024
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow... High Unreviewed
CVE-2002-0184 was published Apr 30, 2022
Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause... High Unreviewed
CVE-2002-1347 was published Apr 30, 2022
Buffer overflow in the get_tag function in mod_include for Apache 1.3.x to 1.3.32 allows local... Moderate Unreviewed
CVE-2004-0940 was published Apr 29, 2022
Multiple stack-based buffer overflows in libcURL and cURL 7.12.1, and possibly other versions,... Moderate Unreviewed
CVE-2005-0490 was published May 1, 2022
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by... High Unreviewed
CVE-2001-0248 was published Apr 30, 2022
The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly... High Unreviewed
CVE-2008-0599 was published May 1, 2022
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to... High Unreviewed
CVE-2003-0899 was published Apr 29, 2022
Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. For the... High Unreviewed
CVE-2024-23805 was published Feb 14, 2024
An integer overflow was found in the __vsyslog_internal function of the glibc library. This... Moderate Unreviewed
CVE-2023-6780 was published Jan 31, 2024
Windows Kernel Local Elevation of Privilege Vulnerability High Unreviewed
CVE-2020-17087 was published May 24, 2022
A memory corruption vulnerability has been identified in PostScript interpreter in various... Critical Unreviewed
CVE-2023-50736 was published Feb 28, 2024
In PHP versions prior to 7.4.33, 8.0.25 and 8.2.12, when using imageloadfont() function in gd... High Unreviewed
CVE-2022-31630 was published Nov 14, 2022
An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less... Moderate Unreviewed
CVE-2021-28039 was published May 24, 2022
An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and... Moderate Unreviewed
CVE-2019-5435 was published May 24, 2022
Apache Guacamole 1.5.1 and older may incorrectly calculate the lengths of instruction elements... High Unreviewed
CVE-2023-30575 was published Jun 7, 2023
In the Linux kernel, the following vulnerability has been resolved: media: staging/intel-ipu3:... High Unreviewed
CVE-2021-46943 was published Feb 27, 2024
Information disclosure in modem due to buffer over-read while processing packets from DNS server High Unreviewed
CVE-2022-25731 was published Apr 13, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database