GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,427
Erlang
29
GitHub Actions
16
Go
1,660
Maven
4,922
npm
3,450
NuGet
594
pip
2,839
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+
41 advisories
Filter by severity
Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of...
High
Unreviewed
CVE-2015-1360
was published
May 17, 2022
Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome...
Moderate
Unreviewed
CVE-2015-1359
was published
May 17, 2022
Unquoted Windows search path vulnerability in the GoogleChromeDistribution:...
Moderate
Unreviewed
CVE-2014-9646
was published
May 17, 2022
Use-after-free vulnerability in PDFium, as used in Google Chrome before 40.0.2214.91, allows...
Moderate
Unreviewed
CVE-2014-9647
was published
May 17, 2022
components/navigation_interception/intercept_navigation_resource_throttle.cc in Google Chrome...
Moderate
Unreviewed
CVE-2014-9648
was published
May 17, 2022
platform/image-decoders/ImageFrame.h in Blink, as used in Google Chrome before 40.0.2214.91, does...
Moderate
Unreviewed
CVE-2015-1361
was published
May 17, 2022
NetCat 5.01 and earlier allows remote attackers to obtain the installation path via the...
Moderate
Unreviewed
CVE-2015-2214
was published
May 17, 2022
Use-after-free vulnerability in the IndexedDB implementation in Google Chrome before 40.0.2214.91...
Moderate
Unreviewed
CVE-2014-7924
was published
May 17, 2022
Use-after-free vulnerability in the WebAudio implementation in Blink, as used in Google Chrome...
High
Unreviewed
CVE-2014-7925
was published
May 17, 2022
factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, allows remote attackers to...
High
Unreviewed
CVE-2014-7931
was published
May 17, 2022
hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, does not properly handle...
High
Unreviewed
CVE-2014-7928
was published
May 17, 2022
The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-lowering.cc in Google V8, as...
High
Unreviewed
CVE-2014-7927
was published
May 17, 2022
Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in...
High
Unreviewed
CVE-2014-7933
was published
May 17, 2022
Use-after-free vulnerability in the DOM implementation in Blink, as used in Google Chrome before...
High
Unreviewed
CVE-2014-7934
was published
May 17, 2022
Use-after-free vulnerability in core/events/TreeScopeEventContext.cpp in the DOM implementation...
High
Unreviewed
CVE-2014-7930
was published
May 17, 2022
Use-after-free vulnerability in the Element::detach function in core/dom/Element.cpp in the DOM...
High
Unreviewed
CVE-2014-7932
was published
May 17, 2022
Use-after-free vulnerability in the HTMLScriptElement::didMoveToNewDocument function in core/html...
High
Unreviewed
CVE-2014-7929
was published
May 17, 2022
The Fonts implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a...
High
Unreviewed
CVE-2014-7938
was published
May 17, 2022
The sycc422_to_rgb function in fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google...
Moderate
Unreviewed
CVE-2014-7944
was published
May 17, 2022
OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote...
Moderate
Unreviewed
CVE-2014-7947
was published
May 17, 2022
Use-after-free vulnerability in browser/speech/tts_message_filter.cc in the Speech implementation...
High
Unreviewed
CVE-2014-7935
was published
May 17, 2022
OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote...
Moderate
Unreviewed
CVE-2014-7945
was published
May 17, 2022
Use-after-free vulnerability in the ZoomBubbleView::Close function in browser/ui/views...
Moderate
Unreviewed
CVE-2014-7936
was published
May 17, 2022
The RenderTable::simplifiedNormalFlowLayout function in core/rendering/RenderTable.cpp in Blink,...
Moderate
Unreviewed
CVE-2014-7946
was published
May 17, 2022
The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in content/browser/appcache...
Moderate
Unreviewed
CVE-2014-7948
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API