Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,080
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

304 advisories

Loading
An integer overflow can occur in the Skia library due to 32-bit integer use in an array without... Critical Unreviewed
CVE-2018-5159 was published May 14, 2022
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on... Critical Unreviewed
CVE-2018-5095 was published May 13, 2022
An error in argument length checking in JavaScript, leading to potential integer overflows or... Critical Unreviewed
CVE-2016-5297 was published May 14, 2022
An issue was discovered in AnyDesk before 9.0.0. It has an integer overflow and resultant heap... Critical Unreviewed
CVE-2025-27918 was published Nov 6, 2025
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of... Critical Unreviewed
CVE-2023-35965 was published Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data... Critical Unreviewed
CVE-2023-35967 was published Oct 11, 2023
Two heap-based buffer overflow vulnerabilities exist in the httpd manage_post functionality of... Critical Unreviewed
CVE-2023-35966 was published Oct 11, 2023
An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig... Critical Unreviewed
CVE-2024-21812 was published Feb 20, 2024
Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_data... Critical Unreviewed
CVE-2023-35968 was published Oct 11, 2023
An issue was discovered in libexpat before 2.6.3. xmlparse.c does not reject a negative length... Critical Unreviewed
CVE-2024-45490 was published Aug 30, 2024
A heap-based buffer overflow vulnerability exists in the comment functionality of stb _vorbis.c... Critical Unreviewed
CVE-2023-47212 was published May 1, 2024
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 1 of 2). Critical Unreviewed
CVE-2023-33863 was published Jun 7, 2023
RenderDoc through 1.26 allows an Integer Overflow with a resultant Buffer Overflow (issue 2 of 2). Critical Unreviewed
CVE-2023-33864 was published Jun 7, 2023
An integer overflow vulnerability exists in the ABF parsing functionality of The Biosig Project... Critical Unreviewed
CVE-2025-53518 was published Aug 25, 2025
An integer overflow vulnerability exists in the GDF parsing functionality of The Biosig Project... Critical Unreviewed
CVE-2025-52581 was published Aug 25, 2025
FastCGI fcgi2 (aka fcgi) 2.x through 2.4.4 has an integer overflow (and resultant heap-based... Critical Unreviewed
CVE-2025-23016 was published Jan 10, 2025
Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who... Critical Unreviewed
CVE-2023-2136 was published Apr 19, 2023
Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who... Critical Unreviewed
CVE-2023-6345 was published Nov 29, 2023
Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182... Critical Unreviewed
CVE-2016-1010 was published May 17, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function... Critical Unreviewed
CVE-2017-12177 was published May 13, 2022
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S... Critical Unreviewed
CVE-2017-12179 was published May 13, 2022
A vulnerability has been identified in RUGGEDCOM ROS M2100 (All versions < V5.6.0), RUGGEDCOM ROS... Critical Unreviewed
CVE-2021-42019 was published Mar 9, 2022
Integer Overflow vulnerability in mp_grow in libtom libtommath before commit... Critical Unreviewed
CVE-2023-36328 was published Sep 1, 2023
Integer Overflow or Wraparound vulnerability in dragonflydb dragonfly (src/redis/lua/struct... Critical Unreviewed
CVE-2025-52935 was published Jun 23, 2025
An integer overflow was present in `OrderedHashTable` used by the JavaScript engine This... Critical Unreviewed
CVE-2025-49710 was published Jun 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database