Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,300
Erlang
31
GitHub Actions
21
Go
2,069
Maven
5,000+
npm
3,744
NuGet
668
pip
3,429
Pub
12
RubyGems
892
Rust
880
Swift
36
Unreviewed advisories
All unreviewed
5,000+

99 advisories

Loading
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off... Moderate Unreviewed
CVE-2024-23849 was published Jan 23, 2024
In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one... High Unreviewed
CVE-2022-48672 was published May 3, 2024
GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability. This vulnerability allows... High Unreviewed
CVE-2023-44444 was published May 3, 2024
An off-by-one error flaw was found in the udevListInterfacesByStatus() function in libvirt when... Moderate Unreviewed
CVE-2024-1441 was published Mar 11, 2024
Apache Tomcat - Fix for CVE-2023-24998 was incomplete High
CVE-2023-28709 was published for org.apache.tomcat.embed:tomcat-embed-core (Maven) Jul 6, 2023
westonsteimel
An off-by-one error in function wav_read_header in src/wav.c in Libsndfile 1.1.0, results in a... High Unreviewed
CVE-2022-33064 was published Jul 18, 2023
In mjs_json.c in Cesanta MongooseOS mJS 1.26, a maliciously formed JSON string can trigger an off... Critical Unreviewed
CVE-2021-31875 was published May 24, 2022
In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could... Moderate Unreviewed
CVE-2010-5331 was published Apr 21, 2022
Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and... High Unreviewed
CVE-2004-0005 was published Apr 29, 2022
WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option enabled, allows local users to... Low Unreviewed
CVE-2004-0342 was published Apr 29, 2022
Format string vulnerability in Infodrom cfingerd 1.4.3 and earlier allows a remote attacker to... High Unreviewed
CVE-2001-0609 was published Apr 30, 2022
Off-by-one error in certain versions of xfstt allows remote attackers to read potentially... Moderate Unreviewed
CVE-2003-0625 was published Apr 29, 2022
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers... Moderate Unreviewed
CVE-2002-1745 was published Apr 30, 2022
Off-by-one buffer overflow in Basic Authentication in Acme Labs thttpd 1.95 through 2.20 allows... High Unreviewed
CVE-2001-1496 was published Apr 30, 2022
Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to... High Unreviewed
CVE-2003-0356 was published Apr 29, 2022
Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier... High Unreviewed
CVE-2002-1816 was published Apr 30, 2022
Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of... Moderate Unreviewed
CVE-2002-1721 was published Apr 30, 2022
Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before... High Unreviewed
CVE-2003-0252 was published Apr 29, 2022
Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows... High Unreviewed
CVE-2004-0346 was published Apr 29, 2022
Off-by-one vulnerability in CPIA driver of Linux kernel before 2.2.19 allows users to modify... Low Unreviewed
CVE-2001-1391 was published Apr 30, 2022
Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of... Moderate Unreviewed
CVE-1999-1568 was published Apr 30, 2022
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3... Moderate Unreviewed
CVE-2011-1027 was published May 17, 2022
In Memcached before 1.6.22, an off-by-one error exists when processing proxy requests in proxy... Critical Unreviewed
CVE-2023-46853 was published Oct 27, 2023
Miscompilation of wasm `i64x2.shr_s` instruction with constant input on x86_64 Low
CVE-2023-41880 was published for wasmtime (Rust) Sep 14, 2023
afonso360
Buffer Overflow in galois_2p8 Critical
CVE-2022-24988 was published for galois_2p8 (Rust) Feb 15, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database