Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

12,814 advisories

Loading
The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1... High Unreviewed
CVE-2011-2692 was published May 13, 2022
The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3,... Moderate Unreviewed
CVE-2013-0772 was published May 13, 2022
The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR... High Unreviewed
CVE-2012-5833 was published May 13, 2022
Stack-based buffer overflow in the supply_lm_input_write function in drivers/thermal... High Unreviewed
CVE-2016-2063 was published May 13, 2022
The implementation of the Unicode Bidirectional Algorithm (aka Bidi algorithm or UBA) in Google... High Unreviewed
CVE-2010-2648 was published May 13, 2022
The Cascading Style Sheets (CSS) implementation in Google Chrome before 5.0.375.99 does not... High Unreviewed
CVE-2010-2651 was published May 13, 2022
Buffer overflow in the nsCharTraits::length function in Mozilla Firefox before 16.0, Firefox ESR... High Unreviewed
CVE-2012-4185 was published May 13, 2022
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird... High Unreviewed
CVE-2012-4187 was published May 13, 2022
Heap-based buffer overflow in the nsHTMLEditor::IsPrevCharInNodeWhitespace function in Mozilla... High Unreviewed
CVE-2012-4180 was published May 13, 2022
Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory... High Unreviewed
CVE-2010-2647 was published May 13, 2022
Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, Thunderbird before 17.0.2,... High Unreviewed
CVE-2013-0752 was published May 13, 2022
Heap-based buffer overflow in the nsWaveReader::DecodeAudioData function in Mozilla Firefox... High Unreviewed
CVE-2012-4186 was published May 13, 2022
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0,... Critical Unreviewed
CVE-2014-1493 was published May 13, 2022
The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2... High Unreviewed
CVE-2010-3081 was published May 13, 2022
The dvb_ca_ioctl function in drivers/media/dvb/ttpci/av7110_ca.c in the Linux kernel before 2.6... High Unreviewed
CVE-2011-0521 was published May 13, 2022
The Hipchat for Mac desktop client is vulnerable to client-side remote code execution via video... Critical Unreviewed
CVE-2017-14586 was published May 13, 2022
The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird... High Unreviewed
CVE-2012-4204 was published May 13, 2022
The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0,... High Unreviewed
CVE-2012-5838 was published May 13, 2022
Heap-based buffer overflow in the Convolve3x3 function in Mozilla Firefox before 16.0, Firefox... High Unreviewed
CVE-2012-4188 was published May 13, 2022
The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through 3.17.2... High Unreviewed
CVE-2014-8369 was published May 13, 2022
The X.25 implementation in the Linux kernel before 2.6.36.2 does not properly parse facilities,... Moderate Unreviewed
CVE-2010-3873 was published May 13, 2022
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11... High Unreviewed
CVE-2018-4162 was published May 13, 2022
tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash... Moderate Unreviewed
CVE-2012-0698 was published May 13, 2022
IrfanView 4.50 - 64bit with CADImage plugin version 12.0.0.5 allows attackers to cause a denial... High Unreviewed
CVE-2017-15746 was published May 13, 2022
The cr_tknzr_parse_comment function in cr-tknzr.c in libcroco 0.6.12 allows remote attackers to... Moderate Unreviewed
CVE-2017-8834 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database