Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,427
Erlang
29
GitHub Actions
16
Go
1,660
Maven
4,922
npm
3,450
NuGet
594
pip
2,839
Pub
10
RubyGems
823
Rust
764
Swift
34
Unreviewed advisories
All unreviewed
5,000+

41 advisories

Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of... High Unreviewed
CVE-2015-1360 was published May 17, 2022
Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome... Moderate Unreviewed
CVE-2015-1359 was published May 17, 2022
Unquoted Windows search path vulnerability in the GoogleChromeDistribution:... Moderate Unreviewed
CVE-2014-9646 was published May 17, 2022
Use-after-free vulnerability in PDFium, as used in Google Chrome before 40.0.2214.91, allows... Moderate Unreviewed
CVE-2014-9647 was published May 17, 2022
components/navigation_interception/intercept_navigation_resource_throttle.cc in Google Chrome... Moderate Unreviewed
CVE-2014-9648 was published May 17, 2022
platform/image-decoders/ImageFrame.h in Blink, as used in Google Chrome before 40.0.2214.91, does... Moderate Unreviewed
CVE-2015-1361 was published May 17, 2022
NetCat 5.01 and earlier allows remote attackers to obtain the installation path via the... Moderate Unreviewed
CVE-2015-2214 was published May 17, 2022
Use-after-free vulnerability in the IndexedDB implementation in Google Chrome before 40.0.2214.91... Moderate Unreviewed
CVE-2014-7924 was published May 17, 2022
Use-after-free vulnerability in the WebAudio implementation in Blink, as used in Google Chrome... High Unreviewed
CVE-2014-7925 was published May 17, 2022
factory.cc in Google V8, as used in Google Chrome before 40.0.2214.91, allows remote attackers to... High Unreviewed
CVE-2014-7931 was published May 17, 2022
hydrogen.cc in Google V8, as used Google Chrome before 40.0.2214.91, does not properly handle... High Unreviewed
CVE-2014-7928 was published May 17, 2022
The SimplifiedLowering::DoLoadBuffer function in compiler/simplified-lowering.cc in Google V8, as... High Unreviewed
CVE-2014-7927 was published May 17, 2022
Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in... High Unreviewed
CVE-2014-7933 was published May 17, 2022
Use-after-free vulnerability in the DOM implementation in Blink, as used in Google Chrome before... High Unreviewed
CVE-2014-7934 was published May 17, 2022
Use-after-free vulnerability in core/events/TreeScopeEventContext.cpp in the DOM implementation... High Unreviewed
CVE-2014-7930 was published May 17, 2022
Use-after-free vulnerability in the Element::detach function in core/dom/Element.cpp in the DOM... High Unreviewed
CVE-2014-7932 was published May 17, 2022
Use-after-free vulnerability in the HTMLScriptElement::didMoveToNewDocument function in core/html... High Unreviewed
CVE-2014-7929 was published May 17, 2022
The Fonts implementation in Google Chrome before 40.0.2214.91 allows remote attackers to cause a... High Unreviewed
CVE-2014-7938 was published May 17, 2022
The sycc422_to_rgb function in fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google... Moderate Unreviewed
CVE-2014-7944 was published May 17, 2022
OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote... Moderate Unreviewed
CVE-2014-7947 was published May 17, 2022
Use-after-free vulnerability in browser/speech/tts_message_filter.cc in the Speech implementation... High Unreviewed
CVE-2014-7935 was published May 17, 2022
OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote... Moderate Unreviewed
CVE-2014-7945 was published May 17, 2022
Use-after-free vulnerability in the ZoomBubbleView::Close function in browser/ui/views... Moderate Unreviewed
CVE-2014-7936 was published May 17, 2022
The RenderTable::simplifiedNormalFlowLayout function in core/rendering/RenderTable.cpp in Blink,... Moderate Unreviewed
CVE-2014-7946 was published May 17, 2022
The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in content/browser/appcache... Moderate Unreviewed
CVE-2014-7948 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API