GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

83 advisories

Filter by severity

Sort by

Least recently updated

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue... High Unreviewed

CVE-2024-49880 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: powercap: intel_rapl: Fix... High Unreviewed

CVE-2024-49862 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: ep93xx: clock: Fix off by... High Unreviewed

CVE-2024-47686 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix off-by-one... High Unreviewed

CVE-2024-47682 was published Oct 21, 2024

In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by... High Unreviewed

CVE-2024-46852 was published Sep 27, 2024

Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via ... High Unreviewed

CVE-2021-3156 was published May 24, 2022

An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the... High Unreviewed

CVE-2024-32668 was published Sep 5, 2024

In the Linux kernel, the following vulnerability has been resolved: hwmon: (ltc2991) re-order... High Unreviewed

CVE-2024-43852 was published Aug 17, 2024

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix off by one... High Unreviewed

CVE-2022-48732 was published Jun 20, 2024

An off-by-one error in WLInfoRailService in Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed

CVE-2024-36136 was published Aug 14, 2024

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in... Moderate Unreviewed

CVE-2024-31585 was published Apr 17, 2024

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... High Unreviewed

CVE-2024-38440 was published Jun 16, 2024

Netatalk 3.2.0 has an off-by-one error and resultant heap-based buffer overflow because of... Critical Unreviewed

CVE-2024-38441 was published Jun 16, 2024

In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed

CVE-2024-23849 was published Jan 23, 2024

In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one... High Unreviewed

CVE-2022-48672 was published May 3, 2024

GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows... High Unreviewed

CVE-2023-44444 was published May 3, 2024

An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed

CVE-2024-1441 was published Mar 11, 2024

An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a... High Unreviewed

CVE-2022-33064 was published Jul 18, 2023

In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off... Critical Unreviewed

CVE-2021-31875 was published May 24, 2022

In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could... Moderate Unreviewed

CVE-2010-5331 was published Apr 21, 2022

Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and... High Unreviewed

CVE-2004-0005 was published Apr 29, 2022

WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option enabled, allows local users to... Low Unreviewed

CVE-2004-0342 was published Apr 29, 2022

Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to... High Unreviewed

CVE-2001-0609 was published Apr 30, 2022

Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers... Moderate Unreviewed

CVE-2002-1745 was published Apr 30, 2022

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially... Moderate Unreviewed

CVE-2003-0625 was published Apr 29, 2022

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

83 advisories