GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,080
Erlang
29
GitHub Actions
19
Go
1,908
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
12,546 advisories
Filter by severity
The WStr::assign function in kso.dll in Kingsoft WPS Office 10.1.0.7106 and 10.2.0.5978 does not...
Moderate
Unreviewed
CVE-2018-6390
was published
May 13, 2022
Stack-based buffer overflow in the _TIFFVGetField function in tif_dir.c in LibTIFF 4.0.0alpha4, 4...
Moderate
Unreviewed
CVE-2016-10095
was published
May 13, 2022
plugins/preauth/pkinit/pkinit_crypto_openssl.c in MIT Kerberos 5 (aka krb5) through 1.15.2...
Critical
Unreviewed
CVE-2017-15088
was published
May 13, 2022
Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile...
Moderate
Unreviewed
CVE-2017-6832
was published
May 13, 2022
Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules...
Moderate
Unreviewed
CVE-2017-6836
was published
May 13, 2022
An off-by-one error was discovered in opj_tcd_code_block_enc_allocate_data in lib/openjp2/tcd.c...
High
Unreviewed
CVE-2017-14151
was published
May 13, 2022
A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2...
High
Unreviewed
CVE-2017-14164
was published
May 13, 2022
The bmp_read_info_header function in bin/jp2/convertbmp.c in OpenJPEG 2.2.0 does not reject...
Moderate
Unreviewed
CVE-2017-12982
was published
May 13, 2022
LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack-based buffer overflow in...
Moderate
Unreviewed
CVE-2017-15046
was published
May 13, 2022
Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled,...
High
Unreviewed
CVE-2010-2730
was published
May 13, 2022
Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in...
High
Unreviewed
CVE-2010-3972
was published
May 13, 2022
Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information...
Moderate
Unreviewed
CVE-2010-1899
was published
May 13, 2022
Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote...
Critical
Unreviewed
CVE-2016-2148
was published
May 13, 2022
In LibTIFF 4.0.8, there is a memory malloc failure in tif_jbig.c. A crafted TIFF document can...
Moderate
Unreviewed
CVE-2017-9937
was published
May 13, 2022
Heap-based buffer overflow in the readContigStripsIntoBuffer function in tif_unix.c in LibTIFF 4...
High
Unreviewed
CVE-2016-10092
was published
May 13, 2022
In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13...
Moderate
Unreviewed
CVE-2018-6381
was published
May 13, 2022
Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0...
High
Unreviewed
CVE-2016-10093
was published
May 13, 2022
Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013...
High
Unreviewed
CVE-2017-11882
was published
May 13, 2022
FastStone Image Viewer 6.2 has a "Data from Faulting Address may be used as a return value" issue...
High
Unreviewed
CVE-2017-8785
was published
May 13, 2022
FastStone Image Viewer 6.2 has a "User Mode Write AV" issue, possibly related to the...
High
Unreviewed
CVE-2017-8826
was published
May 13, 2022
In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in...
Critical
Unreviewed
CVE-2017-12424
was published
May 13, 2022
The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98, 3.99, 3...
Moderate
Unreviewed
CVE-2015-9101
was published
May 13, 2022
Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet...
High
Unreviewed
CVE-2015-8620
was published
May 13, 2022
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka...
Moderate
Unreviewed
CVE-2017-6831
was published
May 13, 2022
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka...
Moderate
Unreviewed
CVE-2017-6834
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API