Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,274
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,419
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,850 advisories

Loading
Denial of service in Netty Moderate
CVE-2014-3488 was published for io.netty:netty-handler (Maven) Jun 30, 2020
Memory leak in Nanopb Moderate
CVE-2020-26243 was published for nanopb (pip) Nov 25, 2020
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability... Moderate Unreviewed
CVE-2022-24322 was published Mar 11, 2022
An issue was discovered in Softing OPC UA C++ SDK before 5.70. An invalid XML element in the type... Moderate Unreviewed
CVE-2021-42262 was published Mar 13, 2022
Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1... Moderate Unreviewed
CVE-2011-1205 was published May 17, 2022
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows remote... Moderate Unreviewed
CVE-2011-1179 was published May 17, 2022
A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1... Moderate Unreviewed
CVE-2010-4695 was published May 17, 2022
Heap-based buffer overflow in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote... Moderate Unreviewed
CVE-2011-0427 was published May 17, 2022
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool... Moderate Unreviewed
CVE-2011-0344 was published May 17, 2022
Heap-based buffer overflow in IBM WebSphere MQ 6.0 before 6.0.2.11 and 7.0 before 7.0.1.5 allows... Moderate Unreviewed
CVE-2011-0314 was published May 17, 2022
Buffer overflow in IBM WebSphere MQ 7.0 before 7.0.1.4 allows remote attackers to execute... Moderate Unreviewed
CVE-2011-0310 was published May 17, 2022
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers... Moderate Unreviewed
CVE-2010-4694 was published May 17, 2022
IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 does not properly handle... Moderate Unreviewed
CVE-2010-4216 was published May 17, 2022
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple... Moderate Unreviewed
CVE-2010-3832 was published May 17, 2022
Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse... Moderate Unreviewed
CVE-2010-2810 was published May 17, 2022
CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed
CVE-2015-5761 was published May 17, 2022
WebKit, as used in Apple iOS before 9.1, Safari before 9.0.1, and iTunes before 12.3.1, allows... Moderate Unreviewed
CVE-2015-5930 was published May 17, 2022
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to... Moderate Unreviewed
CVE-2015-5778 was published May 17, 2022
The Accelerate Framework component in Apple iOS before 9.1 and OS X before 10.11.1, when multi... Moderate Unreviewed
CVE-2015-5940 was published May 17, 2022
FontParser in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows remote... Moderate Unreviewed
CVE-2015-5942 was published May 17, 2022
Apple QuickTime before 7.7.8 allows remote attackers to execute arbitrary code or cause a denial... Moderate Unreviewed
CVE-2015-5786 was published May 17, 2022
FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed
CVE-2015-5756 was published May 17, 2022
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute... Moderate Unreviewed
CVE-2015-5758 was published May 17, 2022
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to... Moderate Unreviewed
CVE-2015-5777 was published May 17, 2022
Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server... Moderate Unreviewed
CVE-2010-3281 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database