GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,399
Composer 4,825
Erlang 36
GitHub Actions 32
Go 2,418
Maven 5,811
npm 4,055
NuGet 723
pip 3,847
Pub 12
RubyGems 934
Rust 1,006
Swift 38

Unreviewed advisories

All unreviewed 264,957

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

103 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In iperf before 3.19.1, iperf_auth.c has an off-by-one error and resultant heap-based buffer... Moderate Unreviewed

CVE-2025-54349 was published Aug 3, 2025

Mbed TLS before 3.6.4 has a PEM parsing one-byte heap-based buffer underflow, in... Moderate Unreviewed

CVE-2025-52497 was published Jul 4, 2025

There's a flaw in the nbdkit server when handling responses from its plugins regarding the status... Moderate Unreviewed

CVE-2025-47711 was published Jun 9, 2025

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fix off-by... Moderate Unreviewed

CVE-2025-37893 was published Apr 18, 2025

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in... Moderate Unreviewed

CVE-2022-49365 was published Apr 14, 2025

httpd.c in atophttpd 2.8.0 has an off-by-one error and resultant out-of-bounds read because a... Moderate Unreviewed

CVE-2025-30742 was published Mar 26, 2025

Off-by-one error vulnerability in the transmission component in Synology Replication Service... Critical Unreviewed

CVE-2024-10442 was published Mar 19, 2025

sqfs_search_dir in Das U-Boot before 2025.01-rc1 exhibits an off-by-one error and resultant heap... High Unreviewed

CVE-2024-57259 was published Feb 19, 2025

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Moderate Unreviewed

CVE-2024-48854 was published Jan 14, 2025

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes... Moderate Unreviewed

CVE-2024-56720 was published Dec 29, 2024

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix... High Unreviewed

CVE-2024-56663 was published Dec 27, 2024

In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_420xx - fix... Moderate Unreviewed

CVE-2024-53163 was published Dec 24, 2024

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: glink: fix... Moderate Unreviewed

CVE-2024-53149 was published Dec 24, 2024

Default Credentail vulnerabilities in ASPECT on Linux allows access to the product using publicly... High Unreviewed

CVE-2024-51554 was published Dec 5, 2024

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue... High Unreviewed

CVE-2024-49880 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: powercap: intel_rapl: Fix... High Unreviewed

CVE-2024-49862 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: ep93xx: clock: Fix off by... High Unreviewed

CVE-2024-47686 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix off-by-one... High Unreviewed

CVE-2024-47682 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by... High Unreviewed

CVE-2024-46852 was published Sep 27, 2024

An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the... High Unreviewed

CVE-2024-32668 was published Sep 5, 2024

In the Linux kernel, the following vulnerability has been resolved: hwmon: (ltc2991) re-order... High Unreviewed

CVE-2024-43852 was published Aug 17, 2024

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed

CVE-2024-36136 was published Aug 14, 2024

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix off by one... High Unreviewed

CVE-2022-48732 was published Jun 20, 2024

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... High Unreviewed

CVE-2024-38440 was published Jun 16, 2024

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... Critical Unreviewed

CVE-2024-38441 was published Jun 16, 2024

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

103 advisories