Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

45 advisories

Loading
In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer... Moderate Unreviewed
CVE-2025-54349 was published Aug 3, 2025
Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in... Moderate Unreviewed
CVE-2025-52497 was published Jul 4, 2025
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status... Moderate Unreviewed
CVE-2025-47711 was published Jun 9, 2025
In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix off-by... Moderate Unreviewed
CVE-2025-37893 was published Apr 18, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in... Moderate Unreviewed
CVE-2022-49365 was published Apr 14, 2025
httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a... Moderate Unreviewed
CVE-2025-30742 was published Mar 26, 2025
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed
CVE-2024-48854 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes... Moderate Unreviewed
CVE-2024-56720 was published Dec 29, 2024
In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix... Moderate Unreviewed
CVE-2024-53163 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix... Moderate Unreviewed
CVE-2024-53149 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix... Moderate Unreviewed
CVE-2021-47373 was published May 21, 2024
FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in... Moderate Unreviewed
CVE-2024-31585 was published Apr 17, 2024
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx-... Moderate Unreviewed
CVE-2024-26766 was published Apr 3, 2024
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed
CVE-2024-1441 was published Mar 11, 2024
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed
CVE-2024-23849 was published Jan 23, 2024
Off-by-one Error in GitHub repository gpac/gpac prior to v2.3.0-DEV. Moderate Unreviewed
CVE-2023-0818 was published Feb 14, 2023
A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master... Moderate Unreviewed
CVE-2022-36354 was published Dec 23, 2022
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c.... Moderate Unreviewed
CVE-2022-3821 was published Nov 9, 2022
Windows Kernel Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-30155 was published Jun 16, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All... Moderate Unreviewed
CVE-2020-27736 was published May 24, 2022
An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by... Moderate Unreviewed
CVE-2020-27171 was published May 24, 2022
An off-by-one error in the DecodeBlock function in codec/sdl_image.c in VideoLAN VLC media player... Moderate Unreviewed
CVE-2019-19721 was published May 24, 2022
An issue was discovered in OpenEXR before 2.4.1. There is an off-by-one error in use of the... Moderate Unreviewed
CVE-2020-11765 was published May 24, 2022
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3... Moderate Unreviewed
CVE-2011-1027 was published May 17, 2022
Off-by-one error in the PDF functionality in Google Chrome before 25.0.1364.97 on Windows and... Moderate Unreviewed
CVE-2013-0897 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database