Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,303
Erlang
31
GitHub Actions
21
Go
2,072
Maven
5,000+
npm
3,744
NuGet
669
pip
3,430
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

12,821 advisories

Loading
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2... Critical Unreviewed
CVE-2017-18269 was published May 13, 2022
NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption ... Moderate Unreviewed
CVE-2018-1000667 was published May 13, 2022
Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr... High Unreviewed
CVE-2018-8882 was published May 13, 2022
Perl before 5.26.3 and 5.28.0 before 5.28.1 has a buffer overflow via a crafted regular... Critical Unreviewed
CVE-2018-18312 was published May 13, 2022
Heap-based buffer overflow in the S_regatom function in regcomp.c in Perl 5 before 5.24.3-RC1 and... High Unreviewed
CVE-2017-12837 was published May 13, 2022
Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before 5.24.3-RC1 and 5.26... Critical Unreviewed
CVE-2017-12883 was published May 13, 2022
Stack-based buffer overflow in the CPerlHost::Add method in win32/perlhost.h in Perl before 5.24... Critical Unreviewed
CVE-2017-12814 was published May 13, 2022
A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch... Moderate Unreviewed
CVE-2018-10872 was published May 13, 2022
Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid... Critical Unreviewed
CVE-2018-18314 was published May 13, 2022
Multiple buffer overflows in Schneider Electric Modicon Quantum PLC allow remote attackers to... High Unreviewed
CVE-2012-0929 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 allow remote attackers to cause... High Unreviewed
CVE-2011-0476 was published May 13, 2022
Stack-based buffer overflow in the isofs_real_readdir function in isofs.c in FuseISO 20070708... High Unreviewed
CVE-2015-8837 was published May 13, 2022
In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in pdf/pdf-xref.c allows remote... Moderate Unreviewed
CVE-2018-16647 was published May 13, 2022
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check... Moderate Unreviewed
CVE-2011-1776 was published May 13, 2022
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle a... High Unreviewed
CVE-2011-0477 was published May 13, 2022
The dma_rx function in drivers/net/wireless/b43/dma.c in the Linux kernel before 2.6.39 does not... High Unreviewed
CVE-2011-3359 was published May 13, 2022
Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow... High Unreviewed
CVE-2011-2517 was published May 13, 2022
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or... High Unreviewed
CVE-2014-1766 was published May 13, 2022
Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel... High Unreviewed
CVE-2011-3191 was published May 13, 2022
Google Chrome before 6.0.472.59 does not properly implement Geolocation, which allows remote... High Unreviewed
CVE-2010-3415 was published May 13, 2022
The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 12.0 through 12.4 and 15.0... High Unreviewed
CVE-2017-6743 was published May 13, 2022
Google Chrome before 5.0.375.127 does not properly implement file dialogs, which allows attackers... High Unreviewed
CVE-2010-3112 was published May 13, 2022
Google Chrome before 5.0.375.127 does not properly implement the Geolocation feature, which... High Unreviewed
CVE-2010-3120 was published May 13, 2022
Google Chrome before 6.0.472.53 and webkitgtk before 1.2.6 do not properly handle counter nodes,... High Unreviewed
CVE-2010-3255 was published May 13, 2022
Google Chrome before 5.0.375.127 and webkitgtk before 1.2.6 do not properly support the Ruby... High Unreviewed
CVE-2010-3119 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database