Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,080
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

51 advisories

Loading
Off by one error in V8 in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to... Moderate Unreviewed
CVE-2025-11215 was published Nov 7, 2025
In the Linux kernel, the following vulnerability has been resolved: mmmremap.c: avoid pointless... Moderate Unreviewed
CVE-2022-49077 was published Oct 14, 2025
In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix off... Moderate Unreviewed
CVE-2025-38600 was published Aug 19, 2025
In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer... Moderate Unreviewed
CVE-2025-54349 was published Aug 3, 2025
Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in... Moderate Unreviewed
CVE-2025-52497 was published Jul 4, 2025
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status... Moderate Unreviewed
CVE-2025-47711 was published Jun 9, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: fix another off-by-one... Moderate Unreviewed
CVE-2023-53143 was published May 2, 2025
In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one error... Moderate Unreviewed
CVE-2025-23150 was published May 1, 2025
In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix off-by... Moderate Unreviewed
CVE-2025-37893 was published Apr 18, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in... Moderate Unreviewed
CVE-2022-49365 was published Apr 14, 2025
httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a... Moderate Unreviewed
CVE-2025-30742 was published Mar 26, 2025
In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix off-by... Moderate Unreviewed
CVE-2025-21813 was published Feb 27, 2025
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed
CVE-2024-48854 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes... Moderate Unreviewed
CVE-2024-56720 was published Dec 29, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix... Moderate Unreviewed
CVE-2024-53163 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix... Moderate Unreviewed
CVE-2024-53149 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix... Moderate Unreviewed
CVE-2021-47373 was published May 21, 2024
FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in... Moderate Unreviewed
CVE-2024-31585 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx-... Moderate Unreviewed
CVE-2024-26766 was published Apr 3, 2024
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed
CVE-2024-1441 was published Mar 11, 2024
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed
CVE-2024-23849 was published Jan 23, 2024
Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV. Moderate Unreviewed
CVE-2023-0818 was published Feb 14, 2023
A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master... Moderate Unreviewed
CVE-2022-36354 was published Dec 23, 2022
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c.... Moderate Unreviewed
CVE-2022-3821 was published Nov 9, 2022
Windows Kernel Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-30155 was published Jun 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database