GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,800

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,945 advisories

Filter by severity

Sort by

Least recently updated

A denial of service vulnerabiity exists in fig2dev through 3.28a due to a segfault in the... Moderate Unreviewed

CVE-2021-37530 was published Jan 13, 2022

A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function... Moderate Unreviewed

CVE-2021-36410 was published Jan 12, 2022

There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful... Moderate Unreviewed

CVE-2021-40009 was published Jan 11, 2022

A Stack Overflow vulnerability exists in Binaryen 103 via the printf_common function. Moderate Unreviewed

CVE-2021-46050 was published Jan 11, 2022

In lighttpd 1.4.46 through 1.4.63, the mod_extforward_Forwarded function of the mod_extforward... Moderate Unreviewed

CVE-2022-22707 was published Jan 7, 2022

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c,... Moderate Unreviewed

CVE-2021-45832 was published Jan 6, 2022

A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in ... Moderate Unreviewed

CVE-2021-45830 was published Jan 6, 2022

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the... Moderate Unreviewed

CVE-2021-45833 was published Jan 6, 2022

Possible memory corruption in BT controller when it receives an oversized LMP packet over 2-DH1... Moderate Unreviewed

CVE-2021-35093 was published Jan 4, 2022

Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from CompileElseBlock and... Moderate Unreviewed

CVE-2021-45929 was published Jan 2, 2022

uWebSockets 19.0.0 through 20.8.0 has an out-of-bounds write in std::__1::pair<unsigned int, void... Moderate Unreviewed

CVE-2021-45945 was published Jan 2, 2022

Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow in... Moderate Unreviewed

CVE-2021-45948 was published Jan 2, 2022

Wasm3 0.5.0 has an out-of-bounds write in CompileBlock (called from Compile_LoopOrBlock and... Moderate Unreviewed

CVE-2021-45946 was published Jan 2, 2022

Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and... Moderate Unreviewed

CVE-2021-45947 was published Jan 2, 2022

LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private ... Moderate Unreviewed

CVE-2021-45950 was published Jan 2, 2022

Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish ... Moderate Unreviewed

CVE-2021-45949 was published Jan 2, 2022

HarfBuzz 2.9.0 has an out-of-bounds write in hb_bit_set_invertible_t::set (called from... Moderate Unreviewed

CVE-2021-45931 was published Jan 2, 2022

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from... Moderate Unreviewed

CVE-2021-45937 was published Jan 2, 2022

libjxl b02d6b9, as used in libvips 8.11 through 8.11.2 and other products, has an out-of-bounds... Moderate Unreviewed

CVE-2021-45928 was published Jan 2, 2022

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (4 bytes) in MqttDecode_Publish (called... Moderate Unreviewed

CVE-2021-45932 was published Jan 2, 2022

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (8 bytes) in MqttDecode_Publish (called... Moderate Unreviewed

CVE-2021-45933 was published Jan 2, 2022

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttClient_DecodePacket (called from... Moderate Unreviewed

CVE-2021-45934 was published Jan 2, 2022

wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow in MqttDecode_Disconnect (called from... Moderate Unreviewed

CVE-2021-45936 was published Jan 2, 2022

Grok 9.5.0 has a heap-based buffer overflow in openhtj2k::T1OpenHTJ2K::decompress (called from... Moderate Unreviewed

CVE-2021-45935 was published Jan 2, 2022

OpenEXR 3.1.0 through 3.1.3 has a heap-based buffer overflow in Imf_3_1::LineCompositeTask:... Moderate Unreviewed

CVE-2021-45942 was published Jan 2, 2022

Previous 1 2 … 74 75 76 77 78 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,945 advisories