Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,139
Maven
5,000+
npm
3,799
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

355 advisories

Loading
In Snapdragon (Automobile, Mobile, Wear) in version MDM9206, MDM9607, MDM9615, MDM9640, MDM9650,... High Unreviewed
CVE-2018-11267 was published May 14, 2022
In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7... High Unreviewed
CVE-2018-4210 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11299 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11827 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11902 was published May 14, 2022
In all android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the... High Unreviewed
CVE-2018-11891 was published May 14, 2022
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys... High Unreviewed
CVE-2019-5666 was published May 14, 2022
Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2,... High Unreviewed
CVE-2014-6317 was published May 14, 2022
In FFmpeg 4.0.1, improper handling of frame types (other than EAC3_FRAME_TYPE_INDEPENDENT) that... High Unreviewed
CVE-2018-13302 was published May 13, 2022
In all Qualcomm products with Android releases from CAF using the Linux kernel, in functions... High Unreviewed
CVE-2017-8251 was published May 13, 2022
An issue (known as XSA-212) was discovered in Xen, with fixes available for 4.8.x, 4.7.x, 4.6.x,... High Unreviewed
CVE-2017-7228 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libhevc). Product: Android.... High Unreviewed
CVE-2017-0836 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0805 was published May 13, 2022
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product:... High Unreviewed
CVE-2017-0737 was published May 13, 2022
A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android... High Unreviewed
CVE-2017-0716 was published May 13, 2022
golang.org/x/net/html Improper Validation of Array Index vulnerability High
CVE-2018-17848 was published for golang.org/x/net (Go) May 13, 2022
In Artifex MuPDF 1.13.0, the fz_append_byte function in fitz/buffer.c allows remote attackers to... Moderate Unreviewed
CVE-2018-16648 was published May 13, 2022
Array index error in the asihpi_hpi_ioctl function in sound/pci/asihpi/hpioctl.c in the... High Unreviewed
CVE-2011-1169 was published May 13, 2022
An improper update of the WebAssembly dispatch table in WebAssembly in Google Chrome prior to 69... High Unreviewed
CVE-2018-17458 was published May 13, 2022
The vmsvga_fifo_run function in hw/display/vmware_vga.c in QEMU (aka Quick Emulator) allows local... Moderate Unreviewed
CVE-2016-7170 was published May 13, 2022
Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2... Moderate Unreviewed
CVE-2010-2806 was published May 13, 2022
An exploitable out-of-bounds indexing vulnerability exists within the RW fabric message particle... Critical Unreviewed
CVE-2016-9053 was published May 13, 2022
Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel... High Unreviewed
CVE-2009-3080 was published May 2, 2022
Multiple array index errors in the bpf_filter_init function in NPF.SYS in WinPcap before 4.0.2,... Moderate Unreviewed
CVE-2007-5756 was published May 1, 2022
Armagetron 0.2.6.0 and earlier and Armagetron Advanced 0.2.7.0 earlier allows remote attackers to... Moderate Unreviewed
CVE-2005-0369 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database