Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,908
Erlang
39
GitHub Actions
38
Go
2,568
Maven
5,000+
npm
4,240
NuGet
754
pip
4,004
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

117 advisories

Loading
In the Linux kernel, the following vulnerability has been resolved: mmmremap.c: avoid pointless... Moderate Unreviewed
CVE-2022-49077 was published Oct 14, 2025
ImageMagick has a Heap Buffer Overflow in InterpretImageFilename Low
CVE-2025-53014 was published for Magick.NET-Q16-AnyCPU (NuGet) Aug 25, 2025
momo-trip iwashiira
utshina on-keyday
Credited to momo-trip, iwashiira, utshina, and on-keyday
In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer... Moderate Unreviewed
CVE-2025-54349 was published Aug 3, 2025
Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in... Moderate Unreviewed
CVE-2025-52497 was published Jul 4, 2025
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status... Moderate Unreviewed
CVE-2025-47711 was published Jun 9, 2025
GoBGP does not verify that the input length Moderate
CVE-2025-43973 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
GoBGP panics due to a zero value for softwareVersionLen High
CVE-2025-43971 was published for github.com/osrg/gobgp (Go) Apr 21, 2025
In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix off-by... Moderate Unreviewed
CVE-2025-37893 was published Apr 18, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in... Moderate Unreviewed
CVE-2022-49365 was published Apr 14, 2025
httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a... Moderate Unreviewed
CVE-2025-30742 was published Mar 26, 2025
Off-by-one error vulnerability in the transmission component in Synology Replication Service... Critical Unreviewed
CVE-2024-10442 was published Mar 19, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix off... High Unreviewed
CVE-2024-57990 was published Feb 27, 2025
sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap... High Unreviewed
CVE-2024-57259 was published Feb 19, 2025
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed
CVE-2024-48854 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes... Moderate Unreviewed
CVE-2024-56720 was published Dec 29, 2024
In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix... High Unreviewed
CVE-2024-56663 was published Dec 27, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix... Moderate Unreviewed
CVE-2024-53163 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix... Moderate Unreviewed
CVE-2024-53149 was published Dec 24, 2024
Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly... High Unreviewed
CVE-2024-51554 was published Dec 5, 2024
In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue... High Unreviewed
CVE-2024-49880 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: powercap: intel_rapl: Fix... High Unreviewed
CVE-2024-49862 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: ep93xx: clock: Fix off by... High Unreviewed
CVE-2024-47686 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix off-by-one... High Unreviewed
CVE-2024-47682 was published Oct 21, 2024
In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by... High Unreviewed
CVE-2024-46852 was published Sep 27, 2024
An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the... High Unreviewed
CVE-2024-32668 was published Sep 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database