Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

716 advisories

Loading
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point... High Unreviewed
CVE-2016-9586 was published May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer... High Unreviewed
CVE-2018-1123 was published May 13, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer... High Unreviewed
CVE-2018-14653 was published May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012... High Unreviewed
CVE-2022-28234 was published May 12, 2022
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919.... High Unreviewed
CVE-2022-1621 was published May 11, 2022
Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to... High Unreviewed
CVE-2022-1619 was published May 9, 2022
All versions of GurumDDS are vulnerable to heap-based buffer overflow, which may cause a denial... Critical Unreviewed
CVE-2021-38439 was published May 6, 2022
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This... High Unreviewed
CVE-2022-1381 was published Apr 19, 2022
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with... High Unreviewed
CVE-2022-29072 was published Apr 16, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the... High Unreviewed
CVE-2022-22188 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21944 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft... High Unreviewed
CVE-2021-21943 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of... High Unreviewed
CVE-2021-21914 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21947 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic... High Unreviewed
CVE-2021-21948 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image... High Unreviewed
CVE-2021-21946 was published Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft... High Unreviewed
CVE-2021-21945 was published Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of... High Unreviewed
CVE-2021-40426 was published Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code... High Unreviewed
CVE-2022-21214 was published Apr 13, 2022
heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2.... Critical Unreviewed
CVE-2022-1286 was published Apr 11, 2022
Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to 1.0.8. Critical Unreviewed
CVE-2022-1253 was published Apr 7, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2... High Unreviewed
CVE-2022-1240 was published Apr 7, 2022
heap-buffer-overflow in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is... Moderate Unreviewed
CVE-2022-1244 was published Apr 6, 2022
Buffer Overflow in yajl-ruby Moderate
CVE-2022-24795 was published for yajl-ruby (RubyGems) Apr 5, 2022
jhawthorn
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2. High Unreviewed
CVE-2022-1160 was published Mar 31, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database