GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,184
Composer 4,340
Erlang 31
GitHub Actions 22
Go 2,101
Maven 5,279
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 885
Swift 37

Unreviewed advisories

All unreviewed 242,961

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,235 advisories

Filter by severity

Sort by

Least recently updated

ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function... Critical Unreviewed

CVE-2021-27433 was published May 4, 2022

TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc... Critical Unreviewed

CVE-2021-27439 was published May 4, 2022

ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in malloc_wrapper function,... Critical Unreviewed

CVE-2021-27435 was published May 4, 2022

NXP MCUXpresso SDK versions prior to 2.8.2 are vulnerable to integer overflow in SDK_Malloc... Critical Unreviewed

CVE-2021-27421 was published May 4, 2022

RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc... Critical Unreviewed

CVE-2021-27427 was published May 4, 2022

ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc ... Critical Unreviewed

CVE-2021-27431 was published May 4, 2022

uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc... Critical Unreviewed

CVE-2021-27419 was published May 4, 2022

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mm_malloc.... Critical Unreviewed

CVE-2021-27425 was published May 4, 2022

Micrium OS Versions 5.10.1 and prior are vulnerable to integer wrap-around in functions... Moderate Unreviewed

CVE-2021-27411 was published May 4, 2022

eCosCentric eCosPro RTOS Versions 2.0.1 through 4.5.3 are vulnerable to integer wraparound in... Critical Unreviewed

CVE-2021-27417 was published May 4, 2022

NXP MQX Versions 5.1 and prior are vulnerable to integer overflow in mem_alloc, _lwmem_alloc and... Critical Unreviewed

CVE-2021-22680 was published May 4, 2022

The Security Team discovered an integer overflow bug that allows an attacker with code execution... High Unreviewed

CVE-2021-22556 was published May 4, 2022

In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c ... Moderate Unreviewed

CVE-2022-29824 was published May 4, 2022

Integer overflow in the xfs_acl_from_disk function in fs/xfs/xfs_acl.c in the Linux kernel before... Moderate Unreviewed

CVE-2012-0038 was published May 4, 2022

Integer overflow in the drm_mode_dirtyfb_ioctl function in drivers/gpu/drm/drm_crtc.c in the... High Unreviewed

CVE-2012-0044 was published May 4, 2022

A denial of service vulnerability exists in the libxm_av.so DemuxCmdInBuffer functionality of... Moderate Unreviewed

CVE-2022-26073 was published May 6, 2022

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... High Unreviewed

CVE-2022-28705 was published May 6, 2022

In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow... Moderate Unreviewed

CVE-2022-28471 was published May 6, 2022

The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer... High Unreviewed

CVE-2018-14337 was published May 7, 2022

In versions of mruby up to and including 1.4.0, an integer overflow exists in src/vm.c:... Critical Unreviewed

CVE-2018-10191 was published May 7, 2022

There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls... Moderate Unreviewed

CVE-2022-27114 was published May 10, 2022

Integer overflow in the index.c:read_entry() function while decompressing a compressed prefix... Moderate Unreviewed

CVE-2018-8098 was published May 12, 2022

There is an illegal READ memory access at caca/dither.c (function get_rgba_default) in libcaca 0... High Unreviewed

CVE-2018-20546 was published May 13, 2022

There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99... High Unreviewed

CVE-2018-20545 was published May 13, 2022

An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file... High Unreviewed

CVE-2016-8733 was published May 13, 2022

Previous 1 2 … 7 8 9 10 11 … 89 90 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,235 advisories