GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,852 advisories
Filter by severity
A heap buffer overflow vulnerability in Ap4TrunAtom.cpp of Bento 1.5.1-628 may lead to an out-of...
Moderate
Unreviewed
CVE-2020-19721
was published
May 24, 2022
Stack overflow vulnerability in parse_mul_div_rem Cesanta MJS 1.20.1, allows remote attackers to...
Moderate
Unreviewed
CVE-2020-36371
was published
May 24, 2022
An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a...
Moderate
Unreviewed
CVE-2020-19464
was published
May 24, 2022
Stack overflow vulnerability in parse_array Cesanta MJS 1.20.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-18392
was published
May 24, 2022
Stack overflow vulnerability in parse_value Cesanta MJS 1.20.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36366
was published
May 24, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS...
Moderate
Unreviewed
CVE-2022-26764
was published
May 27, 2022
A heap-based buffer overflow vulnerability in the function ok_jpg_decode_block_progressive() at...
Moderate
Unreviewed
CVE-2020-23707
was published
May 24, 2022
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2022-26745
was published
May 27, 2022
track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of...
Moderate
Unreviewed
CVE-2020-35964
was published
May 24, 2022
Stack overflow vulnerability in parse_plus_minus Cesanta MJS 1.20.1, allows remote attackers to...
Moderate
Unreviewed
CVE-2020-36372
was published
May 24, 2022
Stack overflow vulnerability in parse_block Cesanta MJS 1.20.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36367
was published
May 24, 2022
Stack overflow vulnerability in parse_statement Cesanta MJS 1.20.1, allows remote attackers to...
Moderate
Unreviewed
CVE-2020-36368
was published
May 24, 2022
Stack overflow vulnerability in parse_unary Cesanta MJS 1.20.1, allows remote attackers to cause...
Moderate
Unreviewed
CVE-2020-36370
was published
May 24, 2022
An issue has been found in function vfprintf in PDF2JSON 0.70 that allows attackers to cause a...
Moderate
Unreviewed
CVE-2020-19463
was published
May 24, 2022
A stack-based buffer overflow in the genptk_text component in genptk.c of fig2dev 3.2.7b allows...
Moderate
Unreviewed
CVE-2020-21675
was published
May 24, 2022
Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gif_process_raster at...
Moderate
Unreviewed
CVE-2020-21050
was published
May 24, 2022
In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-21752
was published
Jun 7, 2022
In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-21750
was published
Jun 7, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c...
Moderate
Unreviewed
CVE-2020-18778
was published
May 24, 2022
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c...
Moderate
Unreviewed
CVE-2020-18775
was published
May 24, 2022
A missing input validation in HDCP LDFW prior to SMR Nov-2021 Release 1 allows attackers to...
Moderate
Unreviewed
CVE-2021-25500
was published
May 24, 2022
In power service, there is a possible out of bounds write due to a missing bounds check. This...
Moderate
Unreviewed
CVE-2022-21759
was published
Jun 7, 2022
In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could...
Moderate
Unreviewed
CVE-2022-21753
was published
Jun 7, 2022
Jettison parser crash by stackoverflow
Moderate
CVE-2022-40149
was published
for
org.codehaus.jettison:jettison
(Maven)
Sep 17, 2022
PNGDec commit 8abf6be was discovered to contain a stack overflow via /linux/main.cpp.
Moderate
Unreviewed
CVE-2022-35008
was published
Aug 17, 2022
ProTip!
Advisories are also available from the
GraphQL API