GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,614
Composer 4,224
Erlang 31
GitHub Actions 19
Go 1,990
Maven 5,170
npm 3,706
NuGet 661
pip 3,336
Pub 11
RubyGems 884
Rust 845
Swift 36

Unreviewed advisories

All unreviewed 234,485

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

206 advisories

Filter by severity

Sort by

Least recently updated

In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could... High Unreviewed

CVE-2018-15909 was published May 13, 2022

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a... High Unreviewed

CVE-2018-16513 was published May 13, 2022

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a... High Unreviewed

CVE-2018-15910 was published May 13, 2022

MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to... Critical Unreviewed

CVE-2018-14403 was published May 13, 2022

MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a... High Unreviewed

CVE-2018-14379 was published May 13, 2022

The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45... High Unreviewed

CVE-2016-5263 was published May 13, 2022

Google Chrome before 17.0.963.65 does not properly perform casts of unspecified variables during... Moderate Unreviewed

CVE-2011-3037 was published May 13, 2022

Google Chrome before 17.0.963.65 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-3036 was published May 13, 2022

Google Chrome before 17.0.963.56 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-3027 was published May 13, 2022

ZenMate 1.5.4 for macOS suffers from a type confusion vulnerability within the com.zenmate.chron... High Unreviewed

CVE-2018-8076 was published May 13, 2022

Google Chrome before 11.0.696.57 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-1441 was published May 13, 2022

Google Chrome before 11.0.696.68 does not properly perform casts of variables during interaction... Moderate Unreviewed

CVE-2011-1799 was published May 13, 2022

Google Chrome before 10.0.648.127 does not properly perform a cast of an unspecified variable... Moderate Unreviewed

CVE-2011-1200 was published May 13, 2022

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed

CVE-2011-0483 was published May 13, 2022

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast... Moderate Unreviewed

CVE-2011-0482 was published May 13, 2022

WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0... High Unreviewed

CVE-2010-1822 was published May 13, 2022

In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This... High Unreviewed

CVE-2018-9568 was published May 13, 2022

The pvscsi_convert_sglist function in hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows... Moderate Unreviewed

CVE-2016-7156 was published May 13, 2022

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions... High Unreviewed

CVE-2015-5219 was published May 13, 2022

Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion... Critical Unreviewed

CVE-2018-4944 was published May 13, 2022

Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X... Critical Unreviewed

CVE-2016-6992 was published May 13, 2022

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion... High Unreviewed

CVE-2017-3106 was published May 13, 2022

An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049... High Unreviewed

CVE-2018-3843 was published May 13, 2022

Possible buffer overflow to improper validation of hash segment of file while allocating memory... High Unreviewed

CVE-2021-35110 was published Apr 2, 2022

Possible out of bounds access due to improper input validation during graphics profiling in... High Unreviewed

CVE-2021-35105 was published Apr 2, 2022

Previous 1 2 … 5 6 7 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

206 advisories