Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+

12,822 advisories

Loading
The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in Graphite 2 before 1.3.6, as used... High Unreviewed
CVE-2016-2802 was published May 13, 2022
The graphite2::GlyphCache::Loader::Loader function in Graphite 2 before 1.3.6, as used in Mozilla... High Unreviewed
CVE-2016-2798 was published May 13, 2022
Heap-based buffer overflow in the graphite2::Slot::setAttr function in Graphite 2 before 1.3.6,... High Unreviewed
CVE-2016-2799 was published May 13, 2022
The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 before 1.3.6, as used in... High Unreviewed
CVE-2016-2797 was published May 13, 2022
The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in Graphite 2 before 1.3.6, as used... High Unreviewed
CVE-2016-2794 was published May 13, 2022
The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before 1.3.6, as used in Mozilla... High Unreviewed
CVE-2016-2792 was published May 13, 2022
CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox before 45.0 and Firefox ESR... High Unreviewed
CVE-2016-2793 was published May 13, 2022
The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, as used in Mozilla Firefox... High Unreviewed
CVE-2016-2791 was published May 13, 2022
The nsScannerString::AppendUnicodeTo function in Mozilla Firefox before 45.0 and Firefox ESR 38.x... High Unreviewed
CVE-2016-1974 was published May 13, 2022
The Machine::Code::decoder::analysis::set_ref function in Graphite 2 before 1.3.6, as used in... High Unreviewed
CVE-2016-1977 was published May 13, 2022
The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH... High Unreviewed
CVE-2016-0778 was published May 13, 2022
Memory leak in libstagefright in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7... Moderate Unreviewed
CVE-2016-1957 was published May 13, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 45.0 and... High Unreviewed
CVE-2016-1952 was published May 13, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 and... Critical Unreviewed
CVE-2016-1930 was published May 13, 2022
The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg.c in QEMU before 2.4, when... High Unreviewed
CVE-2016-1714 was published May 13, 2022
Buffer overflow in the BufferSubData function in Mozilla Firefox before 44.0 and Firefox ESR 38.x... High Unreviewed
CVE-2016-1935 was published May 13, 2022
Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x... High Unreviewed
CVE-2016-1950 was published May 13, 2022
PCRE before 8.38 mishandles the /(?|(\k'Pm')|(?'Pm'))/ pattern and related patterns with certain... High Unreviewed
CVE-2015-8385 was published May 13, 2022
PCRE before 8.38 mishandles the /(?=di(?<=(?1))|(?=(.))))/ pattern and related patterns with an... High Unreviewed
CVE-2015-8388 was published May 13, 2022
PCRE before 8.38 mishandles the interaction of lookbehind assertions and mutually recursive... High Unreviewed
CVE-2015-8386 was published May 13, 2022
Buffer underflow in the ssl_decrypt_record function in epan/dissectors/packet-ssl-utils.c in... Moderate Unreviewed
CVE-2015-0564 was published May 13, 2022
Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP... High Unreviewed
CVE-2015-3329 was published May 13, 2022
The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a... Moderate Unreviewed
CVE-2013-4312 was published May 13, 2022
Buffer overflow in the HTTP transport code in apt-get in APT 1.0.1 and earlier allows man-in-the... Moderate Unreviewed
CVE-2014-6273 was published May 13, 2022
The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has an issue where memory... Moderate Unreviewed
CVE-2017-14165 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database