Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

480 advisories

Loading
An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in... Critical Unreviewed
CVE-2021-4048 was published Dec 9, 2021
There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed
CVE-2021-37051 was published Dec 9, 2021
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,... Critical Unreviewed
CVE-2021-24043 was published Feb 8, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0525 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply... Critical Unreviewed
CVE-2022-23096 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a... Critical Unreviewed
CVE-2022-23097 was published Feb 10, 2022
Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43302 was published Feb 17, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0623 was published Feb 18, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. Critical Unreviewed
CVE-2022-0717 was published Feb 24, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this... Critical Unreviewed
CVE-2021-40050 was published Mar 11, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function... Critical Unreviewed
CVE-2021-33293 was published Mar 11, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component... Critical Unreviewed
CVE-2022-26280 was published Mar 30, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when... Critical Unreviewed
CVE-2021-35088 was published Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,... Critical Unreviewed
CVE-2021-35117 was published Apr 2, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'... Critical Unreviewed
CVE-2021-26623 was published Apr 3, 2022
singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a... Critical Unreviewed
CVE-2022-28805 was published Apr 9, 2022
Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible... Critical Unreviewed
CVE-2022-1276 was published Apr 11, 2022
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2... Critical Unreviewed
CVE-2022-1297 was published Apr 12, 2022
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior... Critical Unreviewed
CVE-2022-1296 was published Apr 12, 2022
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global... Critical Unreviewed
CVE-2021-3643 was published May 3, 2022
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain... Critical Unreviewed
CVE-2021-34085 was published May 12, 2022
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has... Critical Unreviewed
CVE-2019-9169 was published May 13, 2022
A programming error exists in a way Randombit Botan cryptographic library version 2.0.1... Critical Unreviewed
CVE-2017-2801 was published May 13, 2022
An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum... Critical Unreviewed
CVE-2017-14457 was published May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x),... Critical Unreviewed
CVE-2018-11058 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database