Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,985
Erlang
29
GitHub Actions
16
Go
1,774
Maven
5,000
npm
3,541
NuGet
617
pip
3,123
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

460 advisories

Loading
An out-of-bounds read flaw was found in the CLARRV, DLARRV, SLARRV, and ZLARRV functions in... Critical Unreviewed
CVE-2021-4048 was published Dec 9, 2021
There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this... Critical Unreviewed
CVE-2021-37051 was published Dec 9, 2021
A missing bound check in RTCP flag parsing code prior to WhatsApp for Android v2.21.23.2,... Critical Unreviewed
CVE-2021-24043 was published Feb 8, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0525 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. forward_dns_reply mishandles a... Critical Unreviewed
CVE-2022-23097 was published Feb 10, 2022
An issue was discovered in the DNS proxy in Connman through 1.40. The TCP server reply... Critical Unreviewed
CVE-2022-23096 was published Feb 10, 2022
Read out-of-bounds in PJSUA API when calling pjsua_recorder_create. An attacker-controlled ... Critical Unreviewed
CVE-2021-43302 was published Feb 17, 2022
Out-of-bounds Read in Homebrew mruby prior to 3.2. Critical Unreviewed
CVE-2022-0623 was published Feb 18, 2022
Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. Critical Unreviewed
CVE-2022-0717 was published Feb 24, 2022
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this... Critical Unreviewed
CVE-2021-40050 was published Mar 11, 2022
Panorama Tools libpano13 v2.9.20 was discovered to contain an out-of-bounds read in the function... Critical Unreviewed
CVE-2021-33293 was published Mar 11, 2022
Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component... Critical Unreviewed
CVE-2022-26280 was published Mar 30, 2022
Possible out of bound read due to improper validation of IE length during SSID IE parse when... Critical Unreviewed
CVE-2021-35088 was published Apr 2, 2022
An Out of Bounds read may potentially occur while processing an IBSS beacon, in Snapdragon Auto,... Critical Unreviewed
CVE-2021-35117 was published Apr 2, 2022
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record'... Critical Unreviewed
CVE-2021-26623 was published Apr 3, 2022
singlevar in lparser.c in Lua through 5.4.4 lacks a certain luaK_exp2anyregup call, leading to a... Critical Unreviewed
CVE-2022-28805 was published Apr 9, 2022
Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible... Critical Unreviewed
CVE-2022-1276 was published Apr 11, 2022
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2... Critical Unreviewed
CVE-2022-1297 was published Apr 12, 2022
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior... Critical Unreviewed
CVE-2022-1296 was published Apr 12, 2022
A flaw was found in sox 14.4.1. The lsx_adpcm_init function within libsox leads to a global... Critical Unreviewed
CVE-2021-3643 was published May 3, 2022
Read access violation in the III_dequantize_sample function in mpglibDBL/layer3.c in mp3gain... Critical Unreviewed
CVE-2021-34085 was published May 12, 2022
In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has... Critical Unreviewed
CVE-2019-9169 was published May 13, 2022
A programming error exists in a way Randombit Botan cryptographic library version 2.0.1... Critical Unreviewed
CVE-2017-2801 was published May 13, 2022
An exploitable information leak/denial of service vulnerability exists in the libevm (Ethereum... Critical Unreviewed
CVE-2017-14457 was published May 13, 2022
RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x),... Critical Unreviewed
CVE-2018-11058 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API