GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
716 advisories
Filter by severity
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point...
High
Unreviewed
CVE-2016-9586
was published
May 13, 2022
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer...
High
Unreviewed
CVE-2018-1123
was published
May 13, 2022
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer...
High
Unreviewed
CVE-2018-14653
was published
May 13, 2022
Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012...
High
Unreviewed
CVE-2022-28234
was published
May 12, 2022
Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4919....
High
Unreviewed
CVE-2022-1621
was published
May 11, 2022
Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to...
High
Unreviewed
CVE-2022-1619
was published
May 9, 2022
All versions of GurumDDS are vulnerable to heap-based buffer overflow, which may cause a denial...
Critical
Unreviewed
CVE-2021-38439
was published
May 6, 2022
global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This...
High
Unreviewed
CVE-2022-1381
was published
Apr 19, 2022
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with...
High
Unreviewed
CVE-2022-29072
was published
Apr 16, 2022
An Uncontrolled Memory Allocation vulnerability leading to a Heap-based Buffer Overflow in the...
High
Unreviewed
CVE-2022-22188
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21944
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the XWD parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21943
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of...
High
Unreviewed
CVE-2021-21914
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21947
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic...
High
Unreviewed
CVE-2021-21948
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image...
High
Unreviewed
CVE-2021-21946
was published
Apr 15, 2022
Two heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft...
High
Unreviewed
CVE-2021-21945
was published
Apr 15, 2022
A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of...
High
Unreviewed
CVE-2021-40426
was published
Apr 15, 2022
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code...
High
Unreviewed
CVE-2022-21214
was published
Apr 13, 2022
heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2....
Critical
Unreviewed
CVE-2022-1286
was published
Apr 11, 2022
Heap-based Buffer Overflow in GitHub repository strukturag/libde265 prior to 1.0.8.
Critical
Unreviewed
CVE-2022-1253
was published
Apr 7, 2022
Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2...
High
Unreviewed
CVE-2022-1240
was published
Apr 7, 2022
heap-buffer-overflow in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is...
Moderate
Unreviewed
CVE-2022-1244
was published
Apr 6, 2022
Buffer Overflow in yajl-ruby
Moderate
CVE-2022-24795
was published
for
yajl-ruby
(RubyGems)
Apr 5, 2022
heap buffer overflow in get_one_sourceline in GitHub repository vim/vim prior to 8.2.
High
Unreviewed
CVE-2022-1160
was published
Mar 31, 2022
ProTip!
Advisories are also available from the
GraphQL API