Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

45 advisories

Loading
In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer... Moderate Unreviewed
CVE-2025-54349 was published Aug 3, 2025
Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in... Moderate Unreviewed
CVE-2025-52497 was published Jul 4, 2025
FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in... Moderate Unreviewed
CVE-2024-31585 was published Apr 17, 2024
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status... Moderate Unreviewed
CVE-2025-47711 was published Jun 9, 2025
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c.... Moderate Unreviewed
CVE-2022-3821 was published Nov 9, 2022
In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix off-by... Moderate Unreviewed
CVE-2025-37893 was published Apr 18, 2025
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in... Moderate Unreviewed
CVE-2022-49365 was published Apr 14, 2025
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed
CVE-2024-1441 was published Mar 11, 2024
Off-by-one error in the PyLocale_strxfrm function in Modules/_localemodule.c for Python 2.4 and 2... Moderate Unreviewed
CVE-2007-2052 was published May 1, 2022
httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a... Moderate Unreviewed
CVE-2025-30742 was published Mar 26, 2025
In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix... Moderate Unreviewed
CVE-2024-53163 was published Dec 24, 2024
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx-... Moderate Unreviewed
CVE-2024-26766 was published Apr 3, 2024
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed
CVE-2024-48854 was published Jan 14, 2025
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes... Moderate Unreviewed
CVE-2024-56720 was published Dec 29, 2024
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix... Moderate Unreviewed
CVE-2024-53149 was published Dec 24, 2024
Windows Kernel Denial of Service Vulnerability. Moderate Unreviewed
CVE-2022-30155 was published Jun 16, 2022
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix... Moderate Unreviewed
CVE-2021-47373 was published May 21, 2024
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed
CVE-2024-23849 was published Jan 23, 2024
In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could... Moderate Unreviewed
CVE-2010-5331 was published Apr 21, 2022
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers... Moderate Unreviewed
CVE-2002-1745 was published Apr 30, 2022
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially... Moderate Unreviewed
CVE-2003-0625 was published Apr 29, 2022
Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2002-1721 was published Apr 30, 2022
Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of... Moderate Unreviewed
CVE-1999-1568 was published Apr 30, 2022
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3... Moderate Unreviewed
CVE-2011-1027 was published May 17, 2022
A vulnerability has been identified in Nucleus 4 (All versions < V4.1.0), Nucleus NET (All... Moderate Unreviewed
CVE-2020-27736 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database